LNP-641_Fresh installation and configuration of Password Policy module

[sweetymj]

Context

Does this issue have a Jira ticket?
LNP-641
If this is an issue, do we have steps to reproduce?
N/A

Intent

What changes are introduced by this PR that correspond to the above card?

Fresh installation and configuration of the Password Policy module.

• Installed the Password Policy module to enforce strong password standards.
• Configured the following password constraints:
  • Minimum password length: 8
  • Minimum password character types: 4 (The password must include one uppercase letter, one lowercase letter, one number and one special character)
  • Password must not contain the user's username
• Set password reset days to 30
• Enabled "Send email upon password expiration'
• Set pending email days to 7, 14, 30.

Would this PR benefit from screenshots?
N/A

Considerations

Is there any additional information that would help when reviewing this PR?
N/A
Are there any steps required when merging/deploying this PR?
N/A

Checklist

• This PR contains only changes related to the above card
• This deployment has been tested for cache invalidation
• Tests have been added/updated to cover the change
• Documentation has been updated where appropriate
• Tested in Development

[Eli-TW]

Mandating password expiry is against guidance: https://security-guidance.service.justice.gov.uk/passwords/#app-based-password-protection-for-files

Also - I don't think this is complete; I deployed to dev and successfully set an insecure password. Do we need to specify all the roles against the policy for this to be enforce?