[keycloak-user] customizing password policy

[Ori Doolman]

Thank you Stian.
I didn’t see this SPI documented in https://keycloak.gitbooks.io/server-developer-guide/content/v/2.5/topics/providers.html .
Any formal documentation for this SPI?
Would the Admin Console screen be updated with the customized policy once the custom policy is deployed ?

Ori.

From: Stian Thorgersen [mailto:sthorger at redhat.com]
Sent: יום ו 17 פברואר 2017 12:49
To: Ori Doolman <Ori.Doolman at Amdocs.com>
Cc: keycloak-user at lists.jboss.org
Subject: Re: [keycloak-user] customizing password policy

https://github.com/keycloak/keycloak/blob/master/server-spi-private/src/main/java/org/keycloak/policy/PasswordPolicySpi.java

On 17 February 2017 at 10:25, Ori Doolman <Ori.Doolman at amdocs.com<mailto:Ori.Doolman at amdocs.com>> wrote:
Hi,
I couldn't find any SPI for customizing the password policy.
In addition to the exiting options (lowercase characters, special characters etc.), I have an additional requirement - password should not contain any dictionary words.
I can still have it implemented using the Authenticator SPI - https://keycloak.gitbooks.io/server-developer-guide/content/topics/auth-spi.html
The drawback is that it will not be available for configuration from the regular realm Authentication -> Password Policy screen.

Is that the proper way to go?

Thanks,
Ori.

This message and the information contained herein is proprietary and confidential and subject to the Amdocs policy statement,

you may review at http://www.amdocs.com/email_disclaimer.asp
_______________________________________________
keycloak-user mailing list
keycloak-user at lists.jboss.org<mailto:keycloak-user at lists.jboss.org>
https://lists.jboss.org/mailman/listinfo/keycloak-user

This message and the information contained herein is proprietary and confidential and subject to the Amdocs policy statement,

you may review at http://www.amdocs.com/email_disclaimer.asp