password policy defaults to generate passwords that are easier to read

core/src/main/java/org/phoenixctms/ctsms/security/CharacterSet.java

@@ -22,7 +22,7 @@ public CharacterSet() {
 	}
 
 	public void add(CharacterClasses characterClass, int minOccurrence, int maxOccurrence) {
-		if (minOccurrence >= 0 && maxOccurrence >= minOccurrence && !characterClasses.contains(characterClass)) {
+		if (minOccurrence >= 0 && (PasswordPolicy.IGNORE_MAX_OCCURRENCENS || maxOccurrence >= minOccurrence) && !characterClasses.contains(characterClass)) {
 			characterClasses.add(characterClass);
 			minOccurrences.put(characterClass, minOccurrence);
 			maxOccurrences.put(characterClass, maxOccurrence);

core/src/main/java/org/phoenixctms/ctsms/security/PasswordPolicy.java

@@ -24,6 +24,7 @@ public enum CharacterClasses {
 		SMALL_LETTERS, CAPITAL_LETTERS, DIGITS, UMLAUTS, WHITESPACES, ALT_SYMBOLS, SYMBOLS
 	}
 
+	final static boolean IGNORE_MAX_OCCURRENCENS = true; //if true, max_occurrences is used for generating passwords only
 	private final static String STRING_RANDOM_ALGORITHM = CoreUtil.RANDOM_ALGORITHM;
 	private final static HashMap<CharacterClasses, Character[]> CHARACTER_CLASSES = new HashMap<CharacterClasses, Character[]>();
 	private final static HashMap<CharacterClasses, String> CHARACTER_CLASS_L10NKEYS = new HashMap<CharacterClasses, String>();
@@ -280,7 +281,7 @@ public void checkStrength(String input) throws IllegalArgumentException {
 			if (minOccurrence != null && occurrenceCount < minOccurrence) {
 				throw new IllegalArgumentException(L10nUtil.getMessage(MessageCodes.PASSWORD_TOO_FEW_OCCURRENCES, DefaultMessages.PASSWORD_TOO_FEW_OCCURRENCES, minOccurrence,
 						characterClassName));
-			} else if (maxOccurrence != null && occurrenceCount > maxOccurrence) {
+			} else if (!IGNORE_MAX_OCCURRENCENS && maxOccurrence != null && occurrenceCount > maxOccurrence) {
 				throw new IllegalArgumentException(L10nUtil.getMessage(MessageCodes.PASSWORD_TOO_MANY_OCCURRENCES, DefaultMessages.PASSWORD_TOO_MANY_OCCURRENCES, maxOccurrence,
 						characterClassName));
 			}
@@ -346,7 +347,7 @@ private String getRandomString(int desiredLength) throws NoSuchAlgorithmExceptio
 			randomChars.clear();
 			candidates.clear();
 			it = characterSet.getCharacterClasses().iterator();
-			if (i < minRequiredLength) {
+			if (!IGNORE_MAX_OCCURRENCENS && i < minRequiredLength) {
 				while (it.hasNext()) {
 					CharacterClasses characterClass = it.next();
 					Integer minOccurrence = characterSet.getMinOccurrence(characterClass);
@@ -358,7 +359,6 @@ private String getRandomString(int desiredLength) throws NoSuchAlgorithmExceptio
 					}
 				}
 			} else {
-				it = characterSet.getCharacterClasses().iterator();
 				while (it.hasNext()) {
 					CharacterClasses characterClass = it.next();
 					Integer maxOccurrence = characterSet.getMaxOccurrence(characterClass);
@@ -395,7 +395,7 @@ public String getRequirements() {
 				requirements.append(L10nUtil.getMessage(MessageCodes.PASSWORD_CHARACTER_CLASS_MIN_REQUIREMENT, DefaultMessages.PASSWORD_CHARACTER_CLASS_MIN_REQUIREMENT,
 						minOccurrence, characterClassName));
 			}
-			if (maxOccurrence != null && maxOccurrence < maxLength) {
+			if (!IGNORE_MAX_OCCURRENCENS && maxOccurrence != null && maxOccurrence < maxLength) {
 				requirements.append("\n");
 				requirements.append(L10nUtil.getMessage(MessageCodes.PASSWORD_CHARACTER_CLASS_MAX_REQUIREMENT, DefaultMessages.PASSWORD_CHARACTER_CLASS_MAX_REQUIREMENT,
 						maxOccurrence, characterClassName));

core/src/main/resources/ctsms-settings.properties

@@ -59,14 +59,14 @@ password_min_digits=1
 password_min_umlauts=0
 password_min_whitespaces=0
 password_min_alt_symbols=0
-password_min_symbols=1
+password_min_symbols=0
 password_max_small_letters=32
-password_max_capital_letters=32
-password_max_digits=32
-password_max_umlauts=32
-password_max_whitespaces=32
-password_max_alt_symbols=32
-password_max_symbols=32
+password_max_capital_letters=0
+password_max_digits=0
+password_max_umlauts=0
+password_max_whitespaces=0
+password_max_alt_symbols=0
+password_max_symbols=0
 password_min_levenshtein_distance=2
 password_distance_password_history=0
 password_admin_ignore_policy=true
@@ -86,14 +86,14 @@ department_password_min_digits=1
 department_password_min_umlauts=0
 department_password_min_whitespaces=0
 department_password_min_alt_symbols=0
-department_password_min_symbols=1
+department_password_min_symbols=0
 department_password_max_small_letters=256
-department_password_max_capital_letters=256
+department_password_max_capital_letters=0
 department_password_max_digits=256
-department_password_max_umlauts=256
-department_password_max_whitespaces=256
-department_password_max_alt_symbols=256
-department_password_max_symbols=256
+department_password_max_umlauts=0
+department_password_max_whitespaces=0
+department_password_max_alt_symbols=0
+department_password_max_symbols=0
 
 logon_expires=true
 logon_prolongable=true

web/src/main/webapp/META-INF/includes/proband/probandAddress.xhtml

@@ -246,16 +246,7 @@
 								</p:tooltip>
 							</h:panelGroup>
 							<p:message for="countryName" />
-
-
-
-
-
-
-
-
-
-
+
 							<h:outputLabel
 								styleClass="ctsms-field-icon ctsms-icon-encryption"
 								rendered="#{probandAddressBean.showProvince}"