Password Rules

Password Rules

Overview

Thrio offers password rules to safeguard access to the Thrio platform. Password rules are a set of parameters designed to encourage users to employ strong passwords and use them properly.

When a user account is created or updated, the candidate password is validated against the password rule that is associated with the user profile.

To define a password rule:

Name: Enter the name of the rule.
Description: Enter the description of the rule.

To define an account policy, the following can be configured:

Lockout Threshold: determines the number of failed sign-in attempts that will cause a user account to be locked.
Lockout Duration: determines the amount of time with no activity, in milliseconds, that a locked-out account remains locked out before automatically becoming unlocked.
Session Timeout: determines the amount of time with no activity, in milliseconds, for a user’s session to be automatically logged out.

To define password positive rules, the following can be configured:

Allowed Regex: requires passwords to conform to a regular expression.
Allowed Alphabetical: requires passwords to contain a number of alphabetical characters (upper and lower case).
Allowed Digit: requires passwords to contain a number of digit characters.
Allowed Lowercase: requires passwords to contain a number of lower case characters.
Allowed Uppercase: requires passwords to contain a number of upper case characters.
Allowed Special: requires passwords to contain a number of special characters.
Allowed Characters: requires passwords to contain all of a set of characters.

Expiry: determines the period of time, in milliseconds, that a password can be used before the system requires the user to change it.

To define password positive rules, the following can be configured:

Allowed Dictionary: rejects passwords that match an entry in a dictionary (exact match semantics).
Allowed Sub String Dictionary: rejects passwords that contain an entry in a dictionary (substring match semantics).

Illegal Sequence Alphabetical: rejects passwords that contain a sequence of N alphabetical characters.
Illegal Sequence Numerical: rejects passwords that contain a sequence of N digit characters.
Illegal Sequence Querty: rejects passwords that contain a sequence of N US QWERTY keyboard characters.
Illegal Regex: rejects passwords that conform to a regular expression.

Minimum Length: the minimum required length.
Maximum Length: the maximum required length.

Lower Number Range: the lower limit of the defined range.
Upper Number Range: the upper limit of the defined range.

Illegal Character: rejects passwords that contain any of a set of characters.

Repeat Character: rejects passwords that contain multiple sequences of repeating characters.

Username Rule: rejects passwords that contain the username of the user providing the password.

Whitespace Rule: rejects passwords that contain whitespace characters.

Click Here to Download Linked File

What’s a Rich Text element?

The rich text element allows you to create and format headings, paragraphs, blockquotes, images, and video all in one place instead of having to add and format them individually. Just double-click and easily create content.

Static and dynamic content editing

A rich text element can be used with static or dynamic content. For static content, just drop it into any page and begin editing. For dynamic content, add a rich text field to any collection and then connect a rich text element to that field in the settings panel. Voila!

How to customize formatting for each rich text

Headings, paragraphs, blockquotes, figures, images, and figure captions can all be styled after a class is added to the rich text element using the "When inside of" nested selector system.