I think that you should implement your own
org.jasig.cas.authentication.handler.AuthenticationHandler to plugin to CAS
in the deployerConfigContext.xml, In this way you can retrieve a password
for the user, and password expiration value for the user, them proceed to
authenticate the user and if the password is valid check the password
expiration value, to implement the
org.jasig.cas.authentication.handler.AuthenticationHandler you can do
something like this
public boolean authenticate(Credentials cred) throws
AuthenticationException{
String user = ((UsernamePasswordCredentials)cred).getUsername();
String pass = (UsernamePasswordCredentials)cred).getPassword();
//retrieve the user password and expiration value that is stored in db
if(pass.equals(passdb) && !passexpired)
return true;
return false;
}
Consider the use of an password encoder
--
You are currently subscribed to [email protected] as:
[email protected]
To unsubscribe, change settings or access archives, see
http://www.ja-sig.org/wiki/display/JSG/cas-user
