Secure Password Change & UI Enhancement (closes #4939)

[dineshyr29-04]

Closes #4939

Overview

This PR implements critical security enhancements for the password change functionality and adds a premium visibility toggler for better UX.

Changes

🛡️ Security Fixes

• Identical Password Rejection: Users can no longer set a new password that is the same as their current one.
• Strict Complexity Enforcement: New passwords must now be:
  • 8+ characters long
  • Include Uppercase, Lowercase, Number, and Special Character.

✨ UI Enhancements

• Visibility Toggler: Added a sleek eye-icon toggle to all password fields.
• Premium Styling: Added modern SVG icons and refined alignment for a professional look.

Verification

• Verified that identical passwords are rejected.
• Verified complexity rules.
• Tested toggler functionality in multiple visibility states.

[Copilot]

Pull request overview

This PR tightens password-change validation in the MyESP account workflow and adds UI affordances for password field visibility. It also introduces a new “Class Constraints” management module (plus supporting schedule-token model/migration/admin wiring) for program scheduling constraints.

Changes:

• Add server-side password rules: reject identical current/new password and enforce complexity requirements.
• Update the change-password template to add per-field “show/hide password” toggles with inline styling/script.
• Add a new Class Constraints module (templates/handler/tests) and a new ScheduleTestSubject token type to support subject-based schedule constraints.

Reviewed changes

Copilot reviewed 8 out of 8 changed files in this pull request and generated 10 comments.

Show a summary per file

File	Description
esp/templates/users/passwd.html	Adds password visibility toggles and styling to the change-password page.
esp/esp/users/forms/password_reset.py	Adds new-password validation (same-as-current + complexity).
esp/esp/program/modules/handlers/classconstraintsmodule.py	New admin-only module to create/delete schedule constraints using subject tokens.
esp/templates/program/modules/classconstraintsmodule/main.html	UI for listing/creating/deleting class constraints.
esp/esp/program/modules/handlers/tests/test_classconstraintsmodule.py	Tests for the new module’s constraint creation/evaluation/deletion behaviors.
esp/esp/program/models/init.py	Adds ScheduleTestSubject token model and cache invalidation dependencies.
esp/esp/program/migrations/0038_scheduletestsubject.py	Creates DB table for ScheduleTestSubject.
esp/esp/program/admin.py	Registers ScheduleTestSubject in Django admin.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

.toggle-password forces outline: none !important;, which removes the focus indicator and is an accessibility regression. If you need custom styling, replace it with a visible focus style instead of disabling outlines.

Suggested change

	outline: none !important;
	}
	.toggle-password:hover {
	color: #444;
	}
	}
	.toggle-password:hover {
	color: #444;
	}
	.toggle-password:focus-visible {
	outline: 2px solid #444;
	outline-offset: 2px;
	border-radius: 2px;
	}

[Copilot]

The password field error rendering dropped role="alert"/live region behavior from the previous markup, so screen readers may not announce validation errors. Consider restoring role="alert" (or aria-live="polite") on the error container spans.

[Copilot]

subject_exps = ScheduleTestSubject.objects.values_list('exp_id', flat=True) is unscoped and may pull IDs for all programs; combined with condition_id__in=... this can produce a very large IN (...) list. Filter by the current program (e.g., subject__parent_program=prog) and distinct() the IDs, or use a join-based filter instead.

[Copilot]

Same unscoped values_list('exp_id') issue in deletion: it may scan/return exp IDs across all programs. Filter ScheduleTestSubject by subject__parent_program=prog (and ideally distinct()) to keep the lookup small and predictable.

[Copilot]

The module adds explicit handling for non-integer constraint_id values (returning 400), but the test suite in this PR doesn’t cover that branch. Add a request-level test (or a unit test around the POST handler) that posts a non-integer constraint_id and asserts a 400 response.

[Copilot]

clean_newpasswd() assumes new_passwd is always present; if the field fails its own validation (e.g., missing/too long), Django will omit it from cleaned_data and len(new_passwd) will raise TypeError, turning a normal validation error into a 500. Guard for None (and return early) before running length/regex checks.

[Copilot]

Same as above: this unfiltered values_list('exp_id') can generate an unnecessarily large IN (...) for constraints listing. Scope the ScheduleTestSubject query to prog and distinct() it, or use an ORM join to avoid materializing IDs.

[Copilot]

The PR description/linked issue is about password change security & UI, but this file adds an entire new Class Constraints management module plus related model/migration changes. Please either update the PR description to cover this scope or split these changes into a separate PR to keep review and risk manageable.

[Copilot]

This test module docstring claims a test was added for invalid (non-integer) constraint_id handling, but no such test exists in the file. Either add the test or update/remove the docstring bullet to match what’s actually covered.

Suggested change

- Add test for invalid constraint_id (non-integer) handling.

[Copilot]

The visibility toggle button is removed from the tab order (tabindex="-1"), which makes it unusable for keyboard-only users. Since this directly affects password entry UX, keep it focusable (default) and ensure it can be triggered via keyboard.

[Oval17]

Hi @dineshyr29-04
Can you look at the review comments by copilot once.
Thanks

[dineshyr29-04]

ok i will see once and i will get it done.