From 8db347934f29fe2ea4ea6f21474f9b16e4b760bf Mon Sep 17 00:00:00 2001 From: Hoan To Date: Tue, 8 Nov 2022 11:32:53 +0000 Subject: [PATCH] DEV-479: added bruteforce detection to keycloak realm configuration --- roles/keycloak/tasks/_configure_realm.yml | 1 + 1 file changed, 1 insertion(+) diff --git a/roles/keycloak/tasks/_configure_realm.yml b/roles/keycloak/tasks/_configure_realm.yml index d3946bf..8cc3a57 100644 --- a/roles/keycloak/tasks/_configure_realm.yml +++ b/roles/keycloak/tasks/_configure_realm.yml @@ -19,6 +19,7 @@ duplicate_emails_allowed: yes internationalization_enabled: yes default_locale: "de" + brute_force_protected: yes password_policy: "{{ current_realm_password_policy | default('forceExpiredPasswordChange(60) and passwordHistory(3) and length(8) and notUsername(undefined) and upperCase(2) and lowerCase(2) and specialChars(2) and digits(1)') }}" supported_locales: - "de"