nextcloud/server

Password protection for link shares should suggest autogenerated passwords

Open

#12,171 opened on Oct 31, 2018

View on GitHub
 (21 comments) (8 reactions) (0 assignees)PHP (4,865 forks)batch import
2. developingclient: 💻 desktopclient: 🤖🍏 mobiledesignenhancementfeature: sharinghelp wantedneeds reviewoverview

Repository metrics

Stars
 (34,953 stars)
PR merge metrics
 (Avg merge 20d) (627 merged PRs in 30d)

Description

  • Android @tobiasKaminsky
    • nextcloud/android#9241
  • Desktop @camilasan
    • nextcloud/desktop#5944
  • iOS @marinofaggiana
  • Server

Currently when you want to password-protect a link, you have to think of a password yourself. Which is possibly not secure, or not easy to remember. This is especially useful when password-protection is mandatory cause enforced by the admin.

We should help people by autogenerating a default password whenever you check "Password-protect", until it is changed. It should be passwords which can be easily communicated over other channels, so maybe something made of other words like:

house right carton keyboard

Or something like that – you know what I mean. ;)

What do you think @nextcloud/designers @nextcloud/security?

Contributor guide