API Reference mscmp_syst_authn v0.1.0
Modules
API for the management of user authentication.
Types used by the Authentication module.
Represents the return value of functions which evaluate whether or not a specific originating host IP address is allowed to attempt an authentication.
The return type describing the result of authentication attempts via the authentication functions.
Represents the returned data values that were generated by the Authenticator creation process.
Defines a generic Password Rule record allowing Password Rules originating from different database sources a common representation.
Associates access accounts with the instances for which they are allowed to authenticate to.
Contains the known login accounts which are used solely for the purpose of authentication of users.
Hosts the credentials by which a user or external system will prove its identity.
A simple listing of "banned" IP address which are not allowed to authenticate their users to the system.
Represents a SHA-1 hashed password which is expected to be listed in the dictionaries used by attackers to compromised online accounts. Disallowed passwords, as the name suggests, are used to prevent users selecting these known compromised passwords when the password rule to disallow known passwords is in effect.
Expresses globally applicable rules concerning which hosts, as identified by IP address, may or may not attempt to authenticate with the system.
Establishes rules defining the minimum allowed password complexity on a global, whole system basis.
The identities with which access accounts are identified to the system.
Expresses Instance specific rules concerning which hosts, as identified by IP address, may or may not attempt to authenticate with the system.
Expresses Owner specific rules concerning which hosts, as identified by IP address, may or may not attempt to authenticate with the system.
Establishes Owner specific rules defining the minimum allowed password complexity.
A history of previous user passwords credentials kept for the purpose of enforcing the reused password exclusion rule.