* fix: Resolve the issue mentioned in #3392
* fix: Change checkLdapUserPassword to CheckLdapUserPassword.
* fix: the issue mentioned by hsluoyz.
* fix: Check if the user parameter is nil
* fix: use existing i18n message
* feat: Force users to change their passwords after 3/6/12 months
* feat: Check if the password has expired by using the last_change_password_time field added to the user table
* feat: Use the created_time field of the user table to aid password expiration checking
* feat: Rename variable
* feat: support IP limitation for user entry pages
* fix: error message, ip whiteList, check_entry_ip
* fix: perform checks on the backend
* fix: change the implementation of checking IpWhitelist
* fix: add entryIpCheck in SetPassword and remove it from VerifyCode
* fix: remove additional error message pop-ups
* fix: add isRestricted and show ip error in EntryPage.js
* fix: error message
* Update auth.go
* Update check_ip.go
* Update check_ip.go
* fix: update return value of the check function from string to error
* fix: remoteAddress position
* fix: IP whitelist
* fix: clientIp
* fix:add util.GetClientIpFromRequest
* fix: remove duplicate IP and port separation codes and remove extra special characters after clientIp
* fix: gofumpt
* fix: getIpInfo and localhost
---------
Co-authored-by: Yang Luo <hsluoyz@qq.com>
* fix: login will prioritize the use of password set in casdoor and use ldap when use LDAP option in login form or user never change their password in casdoor after sync
* fix: promote if statement
Add configuration items to the application to limit the number of logins and the login wait time after the maximum number of errors is reached
feat: #2272
fix: fixed the issue where the token parameter could be set to a negative value
* Support uploading roles and permissions via xlsx file.
* Template xlsx file for uploading users and permissions.
* reformat according to gofumpt.
* fix typo.
* add password complexity options to organization edit page.
* add password complexity options to organization edit page.
* Fixed Typos.
* Fixed Typos.
* feat:add password complexity options to organization edit page
* Auto generate i18n fields.
* Refactor code according to instructions
* Support autocheck passwd complexity in frontend when setting passwd in user edit page.
* feat:Backend Support for password validation in signup and forget page.
* feat:Frontend Support for password validation in signup and forget page.
* Add default password complex option & Update historical empty filed with default option.
* Migrator for field `password_complex_options` in org table.
* feat: support frontend password complex option check in user_edit/forget/signup page.
* frontend update for user edit page
* update i18n file
---------
Co-authored-by: hsluoyz <hsluoyz@qq.com>
* fixes#1840: [backend] User should have PasswordType like Organization is
* Update migrator.go
* Update and rename migrator_1_314_0_PR_1838.go to migrator_1_314_0_PR_1841.go
* Update user.go
---------
Co-authored-by: hsluoyz <hsluoyz@qq.com>
* fix: update webAuthnBufferDecode to support Base64URL for WebAuthn updates
* feat: enable verification code when the login password is wrong
* fix: only enable captcha when login in password
* fix: disable login error limits when captcha on
* fix: pass "enableCaptcha" as an optional param
* fix: change enbleCapctah to optional bool param
