> > Detect password expired condition and initiate change password
> > functionality
>
> I'm working on this (too) at the moment (integrated into CAS). How far
> are you on this topic? I'm eager to cooperate.
First off, I am not sure if this discussion should be in the users
mailing list or the developers mailing list, so I am cross posting.
I think the first thing that is needed is
org.jasig.cas.authentication.handler.ExpiredPasswordAuthenticationException
Second, I was going to modify
org.jasig.cas.adaptors.jdbc.SearchModeSearchDatabaseAuthenticationHandler
to allow for an expiration date column in the Database. If the current
date is greater than that which comes back from the DB then throw an
ExpiredPasswordAuthenticationException.
Third, I was thinking of creating a
StoredProcedureDatabaseAuthenticationHandler.java
The stored procedure could return:
- 1 authenticateUsernamePasswordInternal returns true
- 2 authenticateUsernamePasswordInternal returns false
- 4 BlockedCredentialsAuthenticationException is thrown
- 8 ExpiredPasswordAuthenticationException is thrown
else UncategorizedAuthenticationException is thrown
Then I think it is a matter of customizing casLoginView.jsp to handle
the ExpiredPasswordAuthenticationException.
If the CAS community is willing to incorporate this into CAS proper,
then I will move forward with the coding.
If not, I ask that they offer another proposition on how to
incorporate expired passwords so that I can help in a unified effort.
-Steve More
_______________________________________________
Yale CAS mailing list
[email protected]
http://tp.its.yale.edu/mailman/listinfo/cas
