PASSWORD POLICY AND AUTHORIZATION

Explore password policy

When developing applications with Kuika, you can use the password policy for your users to create strong passwords, protect the created passwords and determine the frequency of password renewal.As a first step to add the password policy, you must execute the configuration settings in Configuration Manager view mode. If you have an existing configuration, open the relevant configuration.

When developing applications with Kuika, you can use the password policy for your users to create strong passwords, protect the created passwords and determine the frequency of password renewal.As a first step to add the password policy, you must execute the configuration settings in Configuration Manager view mode. If you have an existing configuration, open the relevant configuration.

If you have not created a configuration before, create a new configuration in Configuration Manager view mode. On the Apps tab, click the drop-down menu titled Password Policy.

This menu lists the password policies you have previously added. If you have not created a password policy before, you can create a new password policy by clicking ADD NEW in the menu.

For the password policy you created for your application, you can make settings specific to your application. For these settings, first start by naming the password policy you have created on the pop-up screen titled Password Policy Settings. Then you can specify the characters that can and cannot be used in passwords and password lengths through the Characters and Size tab on the screen titled Password Policy Settings.

Let's take a look at how you can make these determinations.

Under the Must Contains field, you can set the minimum number of lowercase letters, uppercase letters, numeric values and special characters for passwords. Also, if you want your password policy to contain special characters, you can set the special characters that can be used in the password policy.

Under the Must NOT Contains field, you can set whether passwords should not contain certain words, consecutive numbers, repeated letters, user date of birth and user's name-surname information. You need to define the words you want passwords not to contain against the Words heading.

You can set the minimum and maximum character lengths of passwords under the Password Length field, which is another field.

Through the Locking tab, you can set the usage time of passwords, locking user accounts in case of incorrect password entry, CAPTCHA and reuse of last used passwords.

Under the Password Age field, you can set the minimum and maximum number of days passwords are valid. You can also set how many days before the password expires, the user will be notified.

Under the Account Lockout field, you can set the maximum number of times the password can be entered incorrectly for the account to be locked for a certain period of time; you can set the time it takes to retry entering the password.

Under the CAPTCHA field, you can set the maximum number of incorrect CAPTCHA attempts and the maximum number of times the password can be entered incorrectly for CAPTCHA to be active.

Finally, under the Last Passwords field, you can set whether the last used passwords can be reused when setting a new password and whether the new password will not be the same as the last password. You can think of mobile and internet banking applications as the best example of this situation. It is recommended that you carefully set the password policy settings to ensure the password security of the users who will use the applications you have developed.

In the next learning content, we will look at the authorization processes in the application together.

When developing applications with Kuika, you can use the password policy for your users to create strong passwords, protect the created passwords and determine the frequency of password renewal.As a first step to add the password policy, you must execute the configuration settings in Configuration Manager view mode. If you have an existing configuration, open the relevant configuration.

When developing applications with Kuika, you can use the password policy for your users to create strong passwords, protect the created passwords and determine the frequency of password renewal.As a first step to add the password policy, you must execute the configuration settings in Configuration Manager view mode. If you have an existing configuration, open the relevant configuration.

If you have not created a configuration before, create a new configuration in Configuration Manager view mode. On the Apps tab, click the drop-down menu titled Password Policy.

This menu lists the password policies you have previously added. If you have not created a password policy before, you can create a new password policy by clicking ADD NEW in the menu.

For the password policy you created for your application, you can make settings specific to your application. For these settings, first start by naming the password policy you have created on the pop-up screen titled Password Policy Settings. Then you can specify the characters that can and cannot be used in passwords and password lengths through the Characters and Size tab on the screen titled Password Policy Settings.

Let's take a look at how you can make these determinations.

Under the Must Contains field, you can set the minimum number of lowercase letters, uppercase letters, numeric values and special characters for passwords. Also, if you want your password policy to contain special characters, you can set the special characters that can be used in the password policy.

Under the Must NOT Contains field, you can set whether passwords should not contain certain words, consecutive numbers, repeated letters, user date of birth and user's name-surname information. You need to define the words you want passwords not to contain against the Words heading.

You can set the minimum and maximum character lengths of passwords under the Password Length field, which is another field.

Through the Locking tab, you can set the usage time of passwords, locking user accounts in case of incorrect password entry, CAPTCHA and reuse of last used passwords.

Under the Password Age field, you can set the minimum and maximum number of days passwords are valid. You can also set how many days before the password expires, the user will be notified.

Under the Account Lockout field, you can set the maximum number of times the password can be entered incorrectly for the account to be locked for a certain period of time; you can set the time it takes to retry entering the password.

Under the CAPTCHA field, you can set the maximum number of incorrect CAPTCHA attempts and the maximum number of times the password can be entered incorrectly for CAPTCHA to be active.

Finally, under the Last Passwords field, you can set whether the last used passwords can be reused when setting a new password and whether the new password will not be the same as the last password. You can think of mobile and internet banking applications as the best example of this situation. It is recommended that you carefully set the password policy settings to ensure the password security of the users who will use the applications you have developed.

In the next learning content, we will look at the authorization processes in the application together.

Yardımcı kaynaklar

Glossary