| From: | HexaCluster via PostgreSQL Announce <announce-noreply(at)postgresql(dot)org> |
|---|---|
| To: | PostgreSQL Announce <pgsql-announce(at)lists(dot)postgresql(dot)org> |
| Subject: | credcheck v4.3 has been released |
| Date: | 2025-12-27 02:28:00 |
| Message-ID: | 176680248001.978862.3573581040525065690@wrigleys.postgresql.org |
| Views: | Whole Thread | Raw Message | Download mbox | Resend email |
| Thread: | |
| Lists: | pgsql-announce |
Dar es Salaam, Tanzania - December 23, 2025
## PostgreSQL credcheck extension
The credcheck PostgreSQL extension provides few general credential checks, which will be evaluated during the user creation, during the password change and user renaming. By using this extension, we can define a set of rules:
* allow a specific set of credentials
* reject a certain type of credentials
* deny password that can be easily cracked
* enforce use of an expiration date with a minimum of day for a password
* define a password reuse policy
* define the number of authentication failure allowed before a user is banned
* define a delay on authentication failures
* force users to change their password after first login
* throw a warning N days before when the password user is about to expire
Release 4.3 has been published, it fixes issues reported by users since last release.
- Fix background workers crash when pg_cron is used and potentially others
extension using background workers.
- Only execute processUtility hook if we are at top level (not SPI re-enter).
- Fix the "change password after first login" feature that was affecting all
users connecting to the database instead of only the related user.
Upgrade require a PostgreSQL restart to reload the credcheck library.
Complete list of changes and acknowledgements are available [here](https://github.com/HexaCluster/credcheck/releases/tag/v4.3)
## Links & Credits
credcheck is an open project under the PostgreSQL license maintained by [HexaCluster](https://github.com/HexaCluster/credcheck/).
Any contribution to build a better tool is welcome. You can send your ideas, features requests or patches
using the GitHub tools.
**Links :**
* Download: [https://github.com/HexaCluster/credcheck/releases/](https://github.com/HexaCluster/credcheck/releases/)
* Support: use GitHub report tool at [https://github.com/HexaCluster/credcheck/issues](https://github.com/HexaCluster/credcheck/issues)
## About credcheck
The credcheck extension is an original work of MigOps Inc, Since MigOPs is closed the extension is developed and maintained by Gilles Darold at [https://hexacluster.ai](HexaCluster Corp). If you need more information please [https://hexacluster.ai/contact-us/](contact us).
Documentation at [https://github.com/HexaCluster/credcheck#readme](https://github.com/HexaCluster/credcheck#readme)
| From | Date | Subject | |
|---|---|---|---|
| Next Message | PostgreSQL PGDG RPM Repository via PostgreSQL Announce | 2025-12-27 02:30:40 | PostgreSQL RPM repository now supports multiple RHEL minor versions |
| Previous Message | Pgpool Global Development Group via PostgreSQL Announce | 2025-12-23 14:06:53 | Pgpool-II 4.7.0 is now released. |