Gitiles
Code Review Sign In
gerrit.mcp.mirantis.com / salt-formulas / keystone / 75dcd68160fdaf22bd114ab1ef2685da828504d9^! / . / README.rst
commit75dcd68160fdaf22bd114ab1ef2685da828504d9[log] [tgz]
authorOleksandr Shyshko <oshyshko@mirantis.com>Fri Apr 19 11:50:49 2019 +0300
committerOleksandr Shyshko <oshyshko@mirantis.com>Fri Apr 26 14:27:23 2019 +0300
treefe20c065f8f322834244a5ca031e277e1eb88fdc
parent31f7c87fe8041f53716bdfd5ea446f19844c46de [diff] [blame]
Updated security compliance section in README

  * It need because `password_regex` was updeted.

Related-PROD: PROD-29484
Change-Id: I975bca12854e30098fbbba52897be28e8e427ef1
(cherry picked from commit 3d95b71521770db746f7ea22ee3b19c14f067778)

diff --git a/README.rst b/README.rst
index 6ce524f..b0b4caa 100644
--- a/README.rst
+++ b/README.rst

@@ -884,16 +884,16 @@
 keystone:
   server:
     security_compliance:
-      disable_user_account_days_inactive: 90
-      lockout_failure_attempts: 5
+      disable_user_account_days_inactive: 365
+      lockout_failure_attempts: 60
       lockout_duration: 600
-      password_expires_days: 90
-      unique_last_password_count: 10
+      password_expires_days: 730
+      unique_last_password_count: 5
       minimum_password_age: 0
-      password_regex: '^(?=.*\d)(?=.*[a-zA-Z]).{7,}$$'
-      password_regex_description: 'Your password must contains at least 1 letter, 1 digit, and have a minimum length of 7 characters'
-      change_password_upon_first_use: true
-
+      password_regex: '^[a-zA-Z0-9~!@#%^&\*_=+]{32,}$$'
+      password_regex_description: |
+        'Your password could contains capital letters, lowercase letters, digits, symbols "~ ! @ # % ^ & * _ = +" and have a minimum length of 32 characters'
+      change_password_upon_first_use: False
 
 Define extra user options.
 -------------------------