| Column | Type | Size | Nulls | Auto | Default | Children | Parents | Comments |
|---|---|---|---|---|---|---|---|---|
| id | uuid | 2147483647 | √ | null |
|
|
The record’s primary key. The definitive identifier of the record in the system. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
|
| password_length | int4range | 2147483647 | √ | null |
|
|
An integer range of acceptable password lengths with the lower bound representing the minimum length and the upper bound representing the maximum password length. General Usage A zero or negative value on either bound indicates that the bound check is disabled. Note that disabling a bound may still result in a bounds check using the application defined default for the bound. Length is determined on a per character basis, not a per byte basis. Data Requirements
System Defined Record Supported Operations
|
|
| max_age | interval | 49,6 | √ | null |
|
|
An interval indicating the maximum allowed age of a password. Any password older than this interval will typically result in the user being forced to update their password prior to being allowed access to other functionality. The specific user workflow will depend on the implementation details of application. General Usage An interval of 0 time disables the check and passwords may be of any age. Data Requirements
System Defined Record Supported Operations
|
|
| require_upper_case | int4 | 10 | √ | null |
|
|
Establishes the minimum number of upper case characters that are required to be present in the password. General Usage Setting this value to 0 disables the requirement for upper case characters. Data Requirements
System Defined Record Supported Operations
|
|
| require_lower_case | int4 | 10 | √ | null |
|
|
Setting this value to 0 disables the requirement for lower case characters. Data Requirements
System Defined Record Supported Operations
|
|
| require_numbers | int4 | 10 | √ | null |
|
|
Establishes the minimum number of numeric characters that are required to be present in the password. General Usage Setting this value to 0 disables the requirement for numeric characters. Data Requirements
System Defined Record Supported Operations
|
|
| require_symbols | int4 | 10 | √ | null |
|
|
Establishes the minimum number of non-alphanumeric characters that are required to be present in the password. General Usage Setting this value to 0 disables the requirement for non-alphanumeric characters. Data Requirements
System Defined Record Supported Operations
|
|
| disallow_recently_used | int4 | 10 | √ | null |
|
|
When passwords are changed, this value determines how many prior passwords should be checked in order to prevent password re-use. General Usage Setting this value to zero or a negative number will disable the recently used password check. Data Requirements
System Defined Record Supported Operations
|
|
| disallow_compromised | bool | 1 | √ | null |
|
|
When true new passwords submitted through the change password process will be checked against a list of common passwords and passwords known to have been compromised and disallow their use as password credentials in the system. General Usage When false submitted passwords are not checked as being common or against known compromised passwords; such passwords would therefore be usable in the system. Data Requirements
System Defined Record Supported Operations
|
|
| require_mfa | bool | 1 | √ | null |
|
|
When true, an approved multi-factor authentication method must be used in addition to the password credential. Data Requirements
System Defined Record Supported Operations
|
|
| allowed_mfa_types | _text | 2147483647 | √ | null |
|
|
A array of the approved multi-factor authentication methods. Data Requirements
System Defined Record Supported Operations
|
|
| diag_timestamp_created | timestamptz | 35,6 | √ | null |
|
|
The database server date/time when the transaction which created the record started. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
|
| diag_role_created | text | 2147483647 | √ | null |
|
|
The database role which created the record. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
|
| diag_timestamp_modified | timestamptz | 35,6 | √ | null |
|
|
The database server date/time when the transaction which modified the record started. This field will be the same as diag_timestamp_created for inserted records. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
|
| diag_wallclock_modified | timestamptz | 35,6 | √ | null |
|
|
The database server date/time at the moment the record was actually modified. For long running transactions this time may be significantly later than the value of diag_timestamp_modified. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
|
| diag_role_modified | text | 2147483647 | √ | null |
|
|
The database role which modified the record. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
|
| diag_row_version | int8 | 19 | √ | null |
|
|
The current version of the row. The value here indicates how many actual data changes have been made to the row. If an update of the row leaves all data fields the same, disregarding the updates to the diag_* columns, the row version is not updated, nor are any updates made to the other diag_* columns other than diag_update_count. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
|
| diag_update_count | int8 | 19 | √ | null |
|
|
Records the number of times the record has been updated regardless as to if the update actually changed any data. In this way needless or redundant record updates can be found. This row starts at 0 and therefore may be the same as the diag_row_version - 1. General Usage This column is system maintained and should be considered read only in normal operations. Data Requirements
System Defined Record Supported Operations
|
SELECT id, password_length, max_age, require_upper_case, require_lower_case, require_numbers, require_symbols, disallow_recently_used, disallow_compromised, require_mfa, allowed_mfa_types, diag_timestamp_created, diag_role_created, diag_timestamp_modified, diag_wallclock_modified, diag_role_modified, diag_row_version, diag_update_count FROM ms_syst_data.syst_global_password_rules;