The credcheck PostgreSQL extension provides few general credential checks, which will be evaluated during the user creation, during the password change and user renaming. By using this extension, we can define a set of rules:
allow a specific set of credentials
reject a certain type of credentials
deny password that can be easily cracked
enforce use of an expiration date with a minimum of day for a password
define a password reuse policy
define the number of authentication failure allowed before a user is banned
This release is a maintenance release to fix a major issue with the "whitelist" feature.
Fix crash when length of the credcheck.whitelist value was > NAMEDATALEN.
Extension upgrade requires a PostgreSQL restart to reload the credcheck library.
Complete list of changes and acknowledgments are available here
Links & Credits
credcheck is an open project under the PostgreSQL license created at MigOps Inc, developped and maintained by Gilles Darold. Any contribution to build a better tool is welcome. You can send your ideas, features requests or patches using the GitHub tools.
The credcheck extension is an original work of MigOps Inc, Since MigOPs is closed Gilles Darold is the official maintainer. If you need more information please contact me