images/download/attachments/167859366/image-2024-7-30_11-52-20-version-1-modificationdate-1722333140797-api-v2.png

The Authentication menu item provides access to some Base settings relating to logging in to an interactive Lobster Data Platform / Orchestration session.

If the role applicable in the session grants sufficient authorizations (see 'Administration/System/Basic settings'), existing settings can be viewed and adjusted.

By clicking on the Apply ribbon button, adjustments made in the view take effect immediately.

'Apply' does not require a restart of the service on the Lobster Data Platform / Orchestration server.
If applicable, 'Apply' affects all nodes in a cluster.
Any adjustments made are persisted in the relevant XML configuration files so that they remain effective the next time the system is restarted.

►IMPORTANT◄ When opened, the view always displays the settings that are currently active in the system. If a new version of a relevant XML file has been provided in the background – via direct access via the file system – which has not yet been read in by a service restart, the view does not display the settings contained therein. By clicking on the Apply button, the file is overwritten with the version edited in the view anyway.

Configuration

Parameter	Description	Example
Maximum duration of session inactivity (ms)	The Maximum Session Inactivity (ms) parameter defines the maximum duration of a user's inactivity, after which the “inactive” session is automatically logged off. The integer value is interpreted as milliseconds (ms).	The default value is `7200000` (ms). An interactive session is therefore automatically terminated by default after 2 hours of 'inactivity' by the user.
Maximum duration of session inactivity (ms)	CAUTION Unsaved changes can be lost when a session is ended automatically. The usual query when closing views with unsaved changes is not triggered.
Allow password reset	The Allow password reset option determines whether the Password forgotten label appears in the login dialog, which can be used to request a token to reset the password (“ON” → see screenshot on the right) or not (“OFF” → no label). ►NOTE◄ The option only controls whether the clickable label appears in the login dialog. The process for sending a token by e-mail (see also next parameter) to “reset” the password requires further configuration (for details, see 'Forgot password' function).
Password-Reset-Token Validity (ms)	The Password-Reset-Token Validity (ms) parameter defines how long a token sent via the 'Forgot password' function can be used to set a new password for a user account. The integer value is interpreted as milliseconds (ms).	The default value is `86400000` (ms). A password reset token remains valid for 24 hours with this setting.
Passwort Requirements (RegEx)	The Password Requirements (RegEx) parameter enables the definition of Password guidelines in the form of regular expressions. Each click on the Add button adds a text input field instance, which is designed as a required field. The “trash can” button on the right is used to remove the relevant policy. If several policies are defined, a password must be considered 'compliant' with all regular expressions for it to be accepted by the system. The conditions formulated using RegEx are therefore AND linked. The screenshot above shows typical examples of such guidelines: `^.{4,}$` → Minimum length 4 `[0-9]` → Contains one digit `[!$%]` → Contains one of the characters `[A-Z]` → Contains an upper case letter `^((?!(123\|abc)).)*$` → Does not contain any pipe-separated strings. More details and further settings are described on the page for Password guidelines.	▼ Add Remove ▲ ▼ Add Remove ▲ ▼ Add etc.