Skip to Content

Password Policy & Expiry

by
Odoo

38.49

v 19.0 Third Party
Live Preview
Availability
Odoo Online
Odoo.sh
On Premise
Odoo Apps Dependencies Discuss (mail)
Lines of code 730
Technical Name gb_password_policy_expiry_enforcer
LicenseOPL-1
Websitehttps://gencbaris.com/odoo_plugins/
Versions 18.0 19.0
You bought this module and need support? Click here!
Availability
Odoo Online
Odoo.sh
On Premise
Odoo Apps Dependencies Discuss (mail)
Lines of code 730
Technical Name gb_password_policy_expiry_enforcer
LicenseOPL-1
Websitehttps://gencbaris.com/odoo_plugins/
Versions 18.0 19.0
Compatible with Odoo 18.0 · 19.0
LGPL-3 license · 35+ languages · Community & Enterprise
Password Policy & Expiry for Odoo — preview banner

Password Policy & Expiry

Enforce password complexity, rotation, reuse-block and optional breach-list check (BYOK HIBP)

Odoo's native password handling is minimal. This module adds a configurable, per-company password policy: enforce length and character rules, force regular rotation, block reuse of recent passwords, and optionally screen passwords against Have I Been Pwned — without any password ever leaving the server in clear text.

Key Features

Complexity Rules

Minimum length, required uppercase, lowercase, digit and special characters, minimum unique characters and a username-block rule — all set per company.

Rotation & Expiry

Maximum password age in days with a configurable warning window and minimum age, plus computed expiry date, days-left and an expired flag per user.

Reuse History

Store salted PBKDF2 hashes of the last N passwords and block reuse, so users cannot cycle straight back to an old credential.

Breach-List Check (BYOK)

Optional Have I Been Pwned Pwned-Passwords check using a k-anonymity SHA-1 prefix range query. Bring your own key and endpoint; a deterministic offline mode is included.

Change Wizard

A guided password-change wizard validates the new password against the active policy before it is accepted, with clear failure messages.

Audit & Scheduling

Audit log of changes and validation outcomes with strength score and actor, plus a scheduled job that flags expired and soon-to-expire users.

Cyber Essentials Aligned

Complexity, rotation and breach screening map to common Cyber Essentials password expectations, giving you evidence of enforced credential hygiene.

Privacy-Safe Breach Check

K-anonymity range queries mean only a hash prefix is sent. Your users' passwords never leave the server in clear, and the check is entirely opt-in.

Screenshots

Password Policy & Expiry — Password Audit in Odoo

Password Audit

Password Policy & Expiry — Change Password in Odoo

Change Password

Password Policy & Expiry — Password Policies in Odoo

Password Policies

Why Choose This Module

Optional Have I Been Pwned Pwned-Passwords check using a k-anonymity SHA-1 prefix range query. Bring your own key and endpoint; a deterministic offline mode is included.

Specifications

  • Compatible: Odoo 18.0 / 19.0
  • License: LGPL-3
  • Languages: 35+
  • Author: Baris Genc
  • Dependencies: base, mail
  • Support: odoo@gencbaris.com
Odoo Proprietary License v1.0

This software and associated files (the "Software") may only be used (executed,
modified, executed after modifications) if you have purchased a valid license
from the authors, typically via Odoo Apps, or if you have received a written
agreement from the authors of the Software (see the COPYRIGHT file).

You may develop Odoo modules that use the Software as a library (typically
by depending on it, importing it and using its resources), but without copying
any source code or material from the Software. You may distribute those
modules under the license of your choice, provided that this license is
compatible with the terms of the Odoo Proprietary License (For example:
LGPL, MIT, or proprietary licenses similar to this one).

It is forbidden to publish, distribute, sublicense, or sell copies of the Software
or modified copies of the Software.

The above copyright notice and this permission notice must be included in all
copies or substantial portions of the Software.

THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT.
IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM,
DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE,
ARISING FROM, OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER
DEALINGS IN THE SOFTWARE.

Please log in to comment on this module

  • The author can leave a single reply to each comment.
  • This section is meant to ask simple questions or leave a rating. Every report of a problem experienced while using the module should be addressed to the author directly (refer to the following point).
  • If you want to start a discussion with the author or have a question related to your purchase, please use the support page.