MURAT KOÇ wrote:
> In Oracle, it could be created a user profile called "PROFILE" and this profile could have below
> specifications:
>
> PASSWORD_LIFE_TIME (that describes when password will expire)
> FAILED_LOGIN_ATTEMPTS (specifies number of failed login attempts before locking user account)
> PASSWORD_LOCK_TIME (specified time after user account is locked because of failed login attempts
> exceeded)
> PASSWORD_VERIFY_FUNCTION (this allows setting a strong password verify function - min characters,
> password complexity)
>
> Has PostgreSQL got any capability like this except LDAP, kerberos or PAM authentication ?
There's the "passwordcheck" contrib:
http://www.postgresql.org/docs/current/static/passwordcheck.html
It does the same thing as Oracle's PASSWORD_VERIFY_FUNCTION.
You can write your own password checking function.
This way you can also force a certain password expiry date
(PostgreSQL does not have a password life time).
Yours,
Laurenz Albe
