security:

    password-policy:    # users' password policy ( 使用者的密碼策略 )

        uppercase: 0      # minimum number of uppercase letters that the password must contain ( 密碼必須包含的最小小寫字母數 )

        lowercase: 0      # minimum number of lowercase letters that the password must contain ( 密碼必須包含的最小大寫字母數 )

        digit: 0          # minimum number of digits that the password must contain ( 密碼必須包含的最小數字數 )

        length: 4         # minimum length of the password ( 密碼最小長度 )

        not-match-old: true # should access allow setting a new password to the same one currently set for the user ( 禁止與新舊密碼相同 )

    user-lock-policy:

        attempts: 0                     # number of failed login attempts to allow before locking a user. 0 (default) means the feature is disabled ( 鎖定使用者之前允許的失敗登入嘗試次數 )

        seconds-to-unlock: 0            # number of seconds to wait before re-enabling login for a user that has been locked out ( 為已鎖定的使用者重新啟用登入之前等待的秒數 )

        password-expiry-days: 0         # number of days before a password expires. Set by Artifactory ( 密碼過期 )

        admin-password-expirable: false # does the access admin password expire ( 訪問管理員密碼是否過期 )

    audit:

        enabled: true           # should access log all requests to a specific file or not ( 是否應訪問將所有請求記錄到指定檔案 )

        password-strength: 8      # bcrypt password strength. A higher value means better security, but password verification will be slower ( 密碼加密強度，更高的值意味著更好的安全性，但是密碼驗證會慢一些 )

        local-interfaces-expire-in-seconds: 60 * 10 # number of seconds for which local server ips should be cached for users ’ allowed-ips ( 使用者允許的 IP 快取本地伺服器 IP 的秒數 )

        encryption-enabled: true  # specifies if users ’ custom data encryption is allowed ( 指定是否允許使用者的自定義資料加密 )