On this page:
   24.11    Cluster Manager Kafka 24.13    Cross-Origin Resource Sharing (CORS)   

24.12Credentials

 

The Credentials configuration category includes the following configurable options:

  • Password Encoding Scheme

  • Cache Successful Credentials

  • Case-Sensitive Usernames

  • Case-Sensitive Passwords

  • Create Unknown Users

  • Minimum Password Requirements

  • Password Mismatch Error

24.12.1Property: Password Encoding Scheme

 
Property Key
Property Type ENUM
Values
  • SHA256_1000_ROUND
  • SHA256_10000_ROUND
  • SHA256_100000_ROUND
  • PBKDF2_256_1000_RND
  • PBKDF2_256_10000_RND
  • PBKDF2_256_100000_RND
  • BCRYPT_10_ROUND
  • BCRYPT_12_ROUND
  • BCRYPT_14_ROUND
  • BCRYPT_16_ROUND
Description Specify the scheme that will be used to store passwords in the database. Note that changing this value will only affect newly created and updated passwords. Existing passwords will remain encoded using the scheme that was selected at the time that they were saved. See Password Hashing Algorithms for more information.
Default Value BCRYPT_12_ROUND
Is Optional? No

24.12.2Property: Cache Successful Credentials

 
Property Key
Property Type BOOLEAN
Description If enabled, the authorization service will enable a very short-term cache of successful credentials. This is useful in environments where many requests are being made using username/password credentials in each request (i.e. a backend service secured with HTTP Basic Auth). Enable with caution as this setting also has security considerations.
Default Value true
Is Optional? No

24.12.3Property: Case-Sensitive Usernames

 
Property Key
Property Type BOOLEAN
Description If enabled, usernames are treated as case-sensitive. If you change this value after accounts are created, these accounts may be orphaned. Change with caution!
Default Value false
Is Optional? No

24.12.4Property: Case-Sensitive Passwords

 
Property Key
Property Type BOOLEAN
Description If enabled, passwords are case-sensitive. Note that any passwords created before this setting is changed are not affected. Change with caution!
Default Value true
Is Optional? No

24.12.5Property: Create Unknown Users

 
Property Key
Property Type BOOLEAN
Description If a user is requested and does not already exist, having this setting enabled will cause that user to be created. Use this setting with caution as it can result in an unlimited number of users being created within the Smile CDR database. This setting is useful only in situations where the client is trusted (e.g. a server-to-server communication).
Default Value false
Is Optional? No

24.12.6Property: Minimum Password Requirements

 
Property Key
Property Type STRING
Description Specify password requirements using a regular expression (e.g. .{4,100}). Separate each requirement from the other with a single space. Note that these requirements will only be enforced when evaluating newly created and updated passwords; existing passwords remain unaffected.
Default Value .{4,100}
Is Optional? No

24.12.7Property: Password Mismatch Error

 
Property Key
Property Type STRING
Description Error message that will be displayed to the user if the password they are trying to create/update does not match the regular expression specified in Minimum Password Requirements. This message needs to be updated for any change in the Minimum Password Requirements.
Default Value Invalid password
Is Optional? No
   24.11    Cluster Manager Kafka 24.13    Cross-Origin Resource Sharing (CORS)