[keycloak-user] password policy | Not (containing) Username
lists
lists at merit.unu.edu
Wed Jan 24 05:22:30 EST 2018
Hi,
We would like to also prevent passwords *containing* the username, to
also prevent passwords like Username_1980
The regular password policy "Not Username" only matches exact
"username", rather than anything containing the username.
Would it be possible to create a regex password policy to match a
password *containing* the username? But I don't think this is possible..?
Or perhaps I could file a feature request to change the current policy
into "Not containing username"?
MJ
More information about the keycloak-user
mailing list