Select "Application" from the "Environment" menu.
Set the "account password" prepared here.This setting is applied throughout the project.
It will hashes the password when storing the password in the DB. A hashed password can not be analyzed even by an administrator. The standard of this value is raw (passwords are not hashed and treated as plaintext).
|raw||Passwords are not hashed and are treated as plaintext.|
|md5||We use MD5 for the hash algorithm.|
|sha-1||We use SHA-1 for hash algorithm.|
|sha-256||We use SHA-256 for hash algorithm.|
|sha-384||We use SHA-384 for hash algorithm.|
|sha-512||We use SHA - 512 for hash algorithm.|
If you do not specify the password hashing setting, or set a value other than the above, the password is not hashed and is treated as plaintext.
Accounts will be locked if you make a mistake for more than a certain number of passwords on the logon screen.If you do not specify this parameter or set a value smaller than 1, this function will be invalid and account will not be locked even if the password is consecutively wrong.The standard of this value is 5 times.
Account lock applies to "logon screen" and "password change screen".
An expiration date is set for the user's password.
Users whose password has expired will not be able to perform other operations until the password is changed.If this parameter is not specified or set to a value smaller than 0, this function will be invalid and the expiration date will not exist in the password.The standard of this value is 90 days.
The valid days are handled as follows.
|0||The password is valid until 24:00 on the change date (invalid at 0:00 on the next day).|
|1||The password is valid until 24:00 one day after the change date.|
|2||The password is valid until 24:00 two days after the change date.|
|90||The password is valid until 24:00 90 days after the change date.|
|N||The password is valid until 24:00 after N days of the change date.|
(Or a value less than 0, such as "-1")
|Password expiration date None.|
If you set the password valid days to 90 days, the following actions will be taken.
Modified date ... Date on which the password was changed
After 01 days
After 89 days
After 90 days ... The expiration date expires at 24:00 on this day.
When the password expiration date of the user approaches, a message informing that is displayed on the menu screen, and you can urge you to change the password.The standard of this value is 14 days.
If "N" is specified as the effective days warning, a warning will be displayed N days before the expiration date.
When "1" is specified as the valid days warning, a warning will be displayed from 1 day before the password valid days expire (0 days after the 90 day password change, 0 day after the password change day) .
This function is invalid in the following cases.
Users can not reuse passwords set in the past.The standard of this value is 1. The definition method is as follows.
|1 or more||"Current number of passwords -1" of the current password and specified numerical value can not be used.In the case of "1", only the current password is checked.|
|0 or not set or 0 or less||Do not check.|
You can register and update accounts and passwords collectively by uploading CSV or Excel files.
Detail is"Account> CSV download and upload updateI will explain it.
Select "System tab> Account model" from the model list and open the detailed definition of "New password" item.
"Character count check"You can specify the number of characters that can be entered in the password in the setting field.The initial setting value is "Number of characters: minimum 5 characters, maximum number of characters unlimited".
From the detailed definition of the "new password" item "Allowable character typeThe type of characters that can be used is set.
The default setting values are "Allowable Letters: Numbers (Half size), Alphabet Lower Case (Half size), Symbol (Half size)".
Characters that can be used as symbols (half size) are "input check> allowable character type> Setting Details"Please confirm.
You can specify the minimum number of characters required by "Allowable character type" check described above. By using this, letting the number and alphabet be one or more letters, we will not accept passwords with only numbers and letters only.
It is recommended not to use the user-defined check for the password string input rule, but to use the allowable character type setting.
In the password item "User defined checkWhen applying "Password hashing settingIs limited to raw.If you select anything other than raw, it will result in unintended results because it will be checked against hashed password.
The system administrator (admin) can reset the new user's new password.
"Password reminderYou can reset your password using ".(You need to enable this function.)
The password is stored in the passwd item of the juser table.You can also rewrite this value directly using SQL.
If password hashing is applied, store the hashed string in the passwd item.For how to create a hashed character string, please read "Get Designer Functions/Other Tools> Get Password Hash Value".
You can use the init_db.bat script to restore the initial data.Then import the data you just exported.