Support > Repository > Account > Password

You can set the password in detail.

Select "Application" from the "Environment" menu.
Set the "account password" prepared here.This setting is applied throughout the project.

Figure 1 Application settings

It will hashes the password when storing the password in the DB. A hashed password can not be analyzed even by an administrator. The standard of this value is raw (passwords are not hashed and treated as plaintext).

type Description
raw Passwords are not hashed and are treated as plaintext.
md5 We use MD5 for the hash algorithm.
sha-1 We use SHA-1 for hash algorithm.
sha-256 We use SHA-256 for hash algorithm.
sha-384 We use SHA-384 for hash algorithm.
sha-512 We use SHA - 512 for hash algorithm.

If you do not specify the password hashing setting, or set a value other than the above, the password is not hashed and is treated as plaintext.

In general, it is known that hash algorithms are harder to decode as the bit length becomes larger.Currently, sha-512 is the most powerful choice offered.
This setting can not be changed during operation.If you change this setting and build it, you will not be able to log on because the password of the already registered account has been saved by the method before change.

Accounts will be locked if you make a mistake for more than a certain number of passwords on the logon screen.If you do not specify this parameter or set a value smaller than 1, this function will be invalid and account will not be locked even if the password is consecutively wrong.The standard of this value is 5 times.

Account lock applies to "logon screen" and "password change screen".

Even if you enable this setting, users with system administrator privileges will not be subject to account locking.
The account lock function is prepared as a countermeasure against "brute force attack (password brute force attack)".Please be aware that if this function is disabled, security against this attack will be vulnerable.

An expiration date is set for the user's password.

Users whose password has expired will not be able to perform other operations until the password is changed.If this parameter is not specified or set to a value smaller than 0, this function will be invalid and the expiration date will not exist in the password.The standard of this value is 90 days.

The valid days are handled as follows.

Effective daysDescription
0The password is valid until 24:00 on the change date (invalid at 0:00 on the next day).
1The password is valid until 24:00 one day after the change date.
2The password is valid until 24:00 two days after the change date.
90The password is valid until 24:00 90 days after the change date.
NThe password is valid until 24:00 after N days of the change date.
(Or a value less than 0, such as "-1")
Password expiration date None.

If you set the password valid days to 90 days, the following actions will be taken.

Modified date ... Date on which the password was changed
After 01 days
After 89 days
After 90 days ... The expiration date expires at 24:00 on this day.

When the password expiration date of the user approaches, a message informing that is displayed on the menu screen, and you can urge you to change the password.The standard of this value is 14 days.

If "N" is specified as the effective days warning, a warning will be displayed N days before the expiration date.
When "1" is specified as the valid days warning, a warning will be displayed from 1 day before the password valid days expire (0 days after the 90 day password change, 0 day after the password change day) .

This function is invalid in the following cases.

  • Do not specify this parameter
  • When a value less than or equal to 0 is specified (designation including negative number and 0)
  • When a value greater than or equal to the password valid days is specified

Users can not reuse passwords set in the past.The standard of this value is 1. The definition method is as follows.

Numerical value Description
1 or more "Current number of passwords -1" of the current password and specified numerical value can not be used.In the case of "1", only the current password is checked.
0 or not set or 0 or less Do not check.

You can register and update accounts and passwords collectively by uploading CSV or Excel files.
Detail is"Account> CSV download and upload updateI will explain it.

Setting the number of characters of password

Select "System tab> Account model" from the model list and open the detailed definition of "New password" item.

"Character count check"You can specify the number of characters that can be entered in the password in the setting field.The initial setting value is "Number of characters: minimum 5 characters, maximum number of characters unlimited".

Restrict the types of characters that can be used

From the detailed definition of the "new password" item "Allowable character typeThe type of characters that can be used is set.

The default setting values ​​are "Allowable Letters: Numbers (Half size), Alphabet Lower Case (Half size), Symbol (Half size)".

Characters that can be used as symbols (half size) are "input check> allowable character type> Setting Details"Please confirm.

If you change the above setting, make same setting for both "current password" item and "new password" item.

Example: One or more letters and numbers are mixed in the password

You can specify the minimum number of characters required by "Allowable character type" check described above. By using this, letting the number and alphabet be one or more letters, we will not accept passwords with only numbers and letters only.

Use of user defined check is deprecated

It is recommended not to use the user-defined check for the password string input rule, but to use the allowable character type setting.

In the password item "User defined checkWhen applying "Password hashing settingIs limited to raw.If you select anything other than raw, it will result in unintended results because it will be checked against hashed password.

Ask the system administrator

The system administrator (admin) can reset the new user's new password.

Use password reminder

"Password reminderYou can reset your password using ".(You need to enable this function.)

Edit the value of juser table directly

The password is stored in the passwd item of the juser table.You can also rewrite this value directly using SQL.

Except when using Windows Active Directory.When using AD, this value is not used.

If password hashing is applied, store the hashed string in the passwd item.For how to create a hashed character string, please read "Get Designer Functions/Other Tools> Get Password Hash Value".

Initialize to the state right after the build

You can use the init_db.bat script to restore the initial data.Then import the data you just exported.