Strapi admin middleware

James_Lee · July 31, 2024, 9:09am

Hi everyone,

I’m a software developer currently working on a Nextjs app with Strapi as our cms.

My colleague and I are tasked to work on some rather difficult issues with Strapi and we were wondering if anyone has solved these issues before and could guide us on how to tackle these problems.

The list are as follows:

Auto log-off after idling for 14 mins
Prevent two sessions from logging in simultaneously
ID and password must be entered if timed out and browser is closed even after clicking the “Remember Me” button. (Currently it’ll still auto sign in)
Password setting on the following:
- Min & Max password length
- Password history/recycle
- Maximum attempts
- Password expiry dates
- Number of non-active days

We appreciate any help you can provide to us and we look forward to hearing from anyone soon.

With regards,

James Lee

sjeffff · July 31, 2024, 11:25am

Are these questions applicable to the users or the NextJS app or the admin users of the Strapi CMS?
See also: Splitting the management of Admin Users and End Users

James_Lee · July 31, 2024, 11:40am

Admin users of Strapi CMS

sjeffff · July 31, 2024, 12:26pm

Personally I have no experience in advanced control over the admin accounts, and while I believe that some of the requirements are being able to achieve with customizing the configuration. For the majority of features I don’t see any other solution as to create a plugin, and dive into the Strapi rabbit hole to figure out how to accomplish these goals…

Maybe someone else can steer you in the right direction or achieving these goals