Retrieve the Password Validation Rules
This API has been available since 1.8.0
This API is used to retrieve the Password Validation Rules. This configuration is a subset of the Tenant configuration.
Request#
OpenAPI Spec
Request Parameters#
tenantIdUUIDrequiredThe Id of the tenant.
Request Headers#
X-FusionAuth-TenantIdStringoptionalThe unique Id of the tenant used to scope this API request.
The tenant Id is not required on this request even when more than one tenant has been configured because the tenant can be identified based upon the request parameters or it is otherwise not required.
Specify a tenant Id on this request when you want to ensure the request is scoped to a specific tenant. The tenant Id may be provided through this header or by using a tenant locked API key to achieve the same result.
See Making an API request using a Tenant Id for additional information.
Response#
The response for this API contains the Password Validation Rules.
Response Codes
| Code | Description |
|---|---|
| 200 | The request was successful. The response will contain a JSON body. |
| 500 | There was an internal error. A stack trace is provided and logged in the FusionAuth log files. The response will be empty. |
Response Body#
tenant.passwordValidationRules.disallowUserLoginIdBooleanIndicates that passwords containing the user's login Id will not be allowed.
tenant.passwordValidationRules.maxLengthIntegerThe maximum number of characters that are allowed for user passwords.
tenant.passwordValidationRules.minLengthIntegerThe minimum number of characters that are required for user passwords.
tenant.passwordValidationRules.rememberPreviousPasswords.countIntegerThe number of previous passwords that should be remembered so they are not re-used by the User.
tenant.passwordValidationRules.rememberPreviousPasswords.enabledBooleanIndicates that the remember previous password validation is enabled and being enforced.
tenant.passwordValidationRules.requireMixedCaseBooleanIndicates that passwords require an uppercase and lowercase character to be valid.
tenant.passwordValidationRules.requireNonAlphaBooleanIndicates that passwords require a non-alphanumeric character to be valid.
tenant.passwordValidationRules.requireNumberBooleanIndicates that passwords require at least one number to be valid.
Example Response JSON
{
"passwordValidationRules": {
"maxLength": 256,
"minLength": 8,
"rememberPreviousPasswords": {
"count": 2,
"enabled": true
},
"requireMixedCase": true,
"requireNonAlpha": true,
"requireNumber": true
}
}