Thanks Mario !
The extension has also a class that could be set as a schedule task to expire old passwords, so the administrator can set the expiration period (not yet documented, I’m sorry) to fulfill any audit requirement.
For the records, I don’t believe in password expiration either (myPass1, myPass2, etc, is the norm for end users…). But the reality is that my CUBA-based solution has to comply with FDA’s 21 CFR part 11 (electronic signature) and that’s why I had to do it. Indeed, I had fun doing it as an independent add-on instead of monolitic and propietary.
At the end of the day, I’m very happy to reassure once again that CUBA can handle such requirements, some of them as a built-in feature and some, like this one, as an extension.