Documentation
    {{docApp.userSession.userId}}
    {{docApp.userSession.userName}}
    {{docApp.userSession.email}}
    Issuer : {{docApp.userSession.issuerInstance}}
    Expires : {{new Date(docApp.userSession.validUntil).toLocaleDateString()}}

{{docApp.title}}

{{docApp.description}}

INDEX

Documentation Library

Search for information on Hornbill Documentation.

{{docApp.searchError}}

{{docApp.searchResultFilteredItems.length}} results for "{{docApp.currentResultsSearchText}}" in {{docApp.searchFilterBySpecificBookTitle}}

Have questions about this site?

What is this site?

  • This website is Hornbill's new product documentation website and is currently under development.
  • It is intended that all existing and future public-facing documentation we produce will be available to search, browse and share.
  • Hornbill's current documentation is available at Hornbill Wiki but over time this content will be migrated to this documentation site.
  • Please feel free to have a look around at any time.

Why has Hornbill created this site?

  • Hornbill's products have moved on considerably since we introduced it almost 10 years ago. At the time, the MediaWiki tool was sufficient, but we have outgrown it.
  • Our customers are more enterprise focused and more self-sufficient than ever before, so for 2023 and beyond we have established a new documentation platform and team to drive our documentation initiative forwards.
  • We are aiming to deprecate the use of Hornbill Wiki for most Hornbill related documentation.
  • We want to enable our growing partner network with product resources and information, documentation beyond our Wiki approach is required.
  • We could definitely do with some help, and may even pay for some! If you have domain knowledge and would like to help, please check out our Hornbill Docs Contributor Guide and contact the Hornbill docs team at docs@hornbill.com.

What will this site be good for?

  • Community contribution will be facilitated, encouraged, and most welcome.
  • High quality documentation, will be kept up to date as rapidly as our products evolve.
  • Real-time content search and discovery.
  • Articles organized into books, books into libraries, creating a more natural and logical structure to our documentation.
  • Legacy API documentation and various other documentation sources will all be consolidated into a single unified documentation system.
  • Documentation available in browser as well as printable/viewable as PDF on demand.
  • Personalized documentation experience, allowing dark/light mode, article subscriptions, social media sharing and other useful features.
  • Almost all publicly available documentation on docs.hornbill.com will be open-source and available to fork on GitHub, allowing customers to derive their own custom documentation around Hornbill products should they wish to.

What is the timeline for this site?

  • We have taken the decision to publish and make available early, there is very little content at this time.
  • As and when we have completed/usable documentation, it will be published here.
  • We have a host of additional features we wish to add over time, so please watch this space.
  • We expect most of our existing documentation should be reviewed/migrated to docs.hornbill.com over the coming months.
  • The documentation project will be ongoing, will continue to expand, evolve and improve day-by-day.

{{docApp.libraryHomeViewProduct.title || docApp.libraryHomeViewProduct.id}}

{{docApp.libraryHomeViewProduct.description}}

  1. {{book.title}}

{{group.title || group.id}}

{{group.description}}

  1. {{book.title}}

{{group.title}}

{{book.title}}
More...

Password policies

The password policy settings enforce a number of requirements when creating or updating a password for a user account.

Where password policies are applied

  • All user and guest account (contact) authentication.
  • When a user tries to manually change their password on their profile.
  • During LDAP user import, a built-in password generator creates passwords that use these policies.

Tip

Hornbill policies are not applied when using Single sign-on (SSO). Identity providers used for SSO should provide their own policies.

Settings

Hornbill’s password policies are managed through the Password Policy settings.

To make changes to a Policy, update the settings.

Tip

To access any of the settings described in this document, open Configuration and search by part or all of the setting name.

User Password Policy Settings

Name Description Default
security.user.passwordPolicy.checkBlacklists Checks the password blacklists* to make sure the password is not excluded form use on this system Off
security.user.passwordPolicy.checkPersonalInfo Checks to make sure that the password does not contain the users ID or name Off
security.user.passwordPolicy.minimumLength The minimum length a password must be. Set to ZERO to disable minimum length enforcement 8
security.user.passwordPolicy.mustContainLowerCase The minimum number of lower case letters a password should contain 0
security.user.passwordPolicy.mustContainNumeric The minimum number of numeric characters a password should contain 0
security.user.passwordPolicy.mustContainSpecial The minimum number of special characters a password should contain. A special character is anything that is not [a-z][A-Z][0-9] 0
security.user.passwordPolicy.mustContainUpperCase The minimum number of upper case letters a password should contain 0
security.user.passwordPolicy.passwordBlockHistoricCount The number of previous passwords to store and check when setting a new password. 10
security.user.passwordPolicy.passwordExpires The number of days a password should expire after being set. If set to ZERO (0) then the password does not expire 0
security.user.passwordPolicy.passwordMinimumAge The number of days a password once set must be used before it can be changed again. If set to ZERO (0) then it can be changed any time 0
security.user.passwordPolicy.requireOldPasswordForReset If set to true, a user must enter their old password in order to be able to reset their password On
security.user.passwordPolicy.userResetResponseTimeout The number of seconds a user initiated password reset request token remains valid. 86400

Guest Password Policy Settings

Name Description Default
security.guest.passwordPolicy.checkBlacklists Checks the password blacklists* to make sure the password is not excluded form use on this system Off
security.guest.passwordPolicy.checkPersonalInfo Checks to make sure that the password does not contain the users ID or name Off
security.guest.passwordPolicy.minimumLength The minimum length a password must be. Set to ZERO to disable minimum length enforcement 8
security.guest.passwordPolicy.mustContainLowerCase The minimum number of lower case letters a password should contain 0
security.guest.passwordPolicy.mustContainNumeric The minimum number of numeric characters a password should contain 0
security.guest.passwordPolicy.mustContainSpecial The minimum number of special characters a password should contain. A special character is anything that is not [a-z][A-Z][0-9] 0
security.guest.passwordPolicy.mustContainUpperCase The minimum number of upper case letters a password should contain 0
security.guest.passwordPolicy.userResetResponseTimeout The number of seconds a guest initiated password reset request token remains valid. The default value is 24 hours (86400) 86400

Note

*Blacklists: Lists of the top hacked or most commonly used passwords are provided by SplashData, NordPass, and Imperva. These lists are maintained by Hornbill, and will be periodically updated as new lists are provided.

  • Version {{docApp.book.version}}
  • Node {{docApp.node}} / {{docApp.build}}
In This Document