On Fri, 2022-01-21 at 09:10 -0500, Mladen Gogala wrote:
> On 1/20/22 09:25, Laurenz Albe wrote:
>
> > It is not quite clear what you mean, but I assume you want password complexity rules,
> > and you want to force users to change their password after a while.
> >
> > You cannot do any of that with passwords in the database; the best you can
> > do is set an expiration time for the user's ability to log in.
> Actually, you can. There is the standard "passwordcheck" module described in the documentation:
> https://www.postgresql.org/docs/current/passwordcheck.html
> You would have to do some C programming, but it's very possible.
That is no solution, because it cannot check hashed passwords
(except with cracklib). I wrote it.
Laurenz Albe