kubesphere icon indicating copy to clipboard operation
kubesphere copied to clipboard
verified publisher icon kubesphere

Security Enhancement

Open RolandMa1986 opened this issue 4 years ago • 1 comments

What's it about? The security mechanism is one of the most critical systems functional features that need to be implemented to ensure system security. Currently, we have sample built-in mechanisms like password police and login restriction. However, we still lack some important functions likes bellow:

Session management

  • [x] #4442

Password Police

  • [ ] Force user change password when login first time, including admin user (currently is optional).
  • [ ] Do not allow to copy/cut password
  • [x] Minimum password length requires at least a value of 8
  • [ ] Allows to set Maximum password age. and prompt user to change password
  • [ ] Allows to set Enforce password history. Set the number of unique new passwords that must be associated with a user account before an old password can be reused.

Transport

  • [ ] https://github.com/kubesphere/console/issues/3324
  • [ ] https://github.com/kubesphere/kubesphere/issues/5144
  • [ ] https://github.com/kubesphere/issues/issues/62
  • [x] https://github.com/kubesphere/issues/issues/580

Authentication

  • [ ] Support TOTP MFA https://github.com/kubesphere/kubesphere/issues/4910
  • [ ] https://github.com/kubesphere/issues/issues/616

Encryption

  • [x] https://github.com/kubesphere/issues/issues/610

Documents

  • [ ] Provide more detailed document above the default policies and configuration
  • [ ] Information about Security risks and recommendations.

Area Suggestion

/area apiserver /area console /area documentation /area iam /kind feature-request

RolandMa1986 avatar Nov 12 '21 03:11 RolandMa1986

/cc @VioZhang @zryfish @calvinyv

RolandMa1986 avatar Nov 12 '21 08:11 RolandMa1986