[keycloak-user] customizing password policy

Stian Thorgersen sthorger at redhat.com
Mon Feb 20 02:57:42 EST 2017


On 17 February 2017 at 16:52, Ori Doolman <Ori.Doolman at amdocs.com> wrote:

> Thank you Stian.
>
> I didn’t see this SPI documented in https://keycloak.gitbooks.io/
> server-developer-guide/content/v/2.5/topics/providers.html .
>
> Any formal documentation for this SPI?
>

No, not all SPIs are documented yet.


> Would the Admin Console screen be updated with the customized policy once
> the custom policy is deployed ?
>

Yes


>
>
> Ori.
>
>
>
> *From:* Stian Thorgersen [mailto:sthorger at redhat.com]
> *Sent:* יום ו 17 פברואר 2017 12:49
> *To:* Ori Doolman <Ori.Doolman at Amdocs.com>
> *Cc:* keycloak-user at lists.jboss.org
> *Subject:* Re: [keycloak-user] customizing password policy
>
>
>
> https://github.com/keycloak/keycloak/blob/master/server-
> spi-private/src/main/java/org/keycloak/policy/PasswordPolicySpi.java
>
>
>
> On 17 February 2017 at 10:25, Ori Doolman <Ori.Doolman at amdocs.com> wrote:
>
> Hi,
> I couldn't find any SPI for customizing the password policy.
> In addition to the exiting options (lowercase characters, special
> characters etc.), I have an additional requirement - password should not
> contain any dictionary words.
> I can still have it implemented using the Authenticator SPI -
> https://keycloak.gitbooks.io/server-developer-guide/
> content/topics/auth-spi.html
> The drawback is that it will not be available for configuration from the
> regular realm Authentication -> Password Policy screen.
>
> Is that the proper way to go?
>
> Thanks,
> Ori.
>
> This message and the information contained herein is proprietary and
> confidential and subject to the Amdocs policy statement,
>
> you may review at http://www.amdocs.com/email_disclaimer.asp
> _______________________________________________
> keycloak-user mailing list
> keycloak-user at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-user
>
>
> This message and the information contained herein is proprietary and
> confidential and subject to the Amdocs policy statement,
> you may review at http://www.amdocs.com/email_disclaimer.asp
>


More information about the keycloak-user mailing list