[keycloak-user] Improvement required in password policy evaluation

Shaikh Asrafali Anwarali asrafalianwarali.shaikh at gi-de.com
Thu Sep 28 01:29:21 EDT 2017


Hello,



The Keycloak shows PASSWORD construction rule one at a time when it fail to adhere to it.



For example :

Applied password policy are :

1.       specialChars

2.       upperCase

3.       passwordHistory

4.       length

5.       digits

6.       notUsername

7.       lowerCase



If I set my password as "abcd"

I get error message saying " there has to be special character"   then I changed it to abcd@

After that I get message saying, there has to be 1 capital letter ... It goes on and one till all the policy is satisfied



There is a requirement that all failure reasons should be displayed at once or at least show the configures password rules somewhere on this screen.

On page I have all the data available, like in realm.passwordPolicy -  have all the configured password policy data.

But not sure how messages can be  formulated so that internationalization is also maintained.



Is there any way by which it can be achieve?





Regards,

Asraf Shaikh



More information about the keycloak-user mailing list