The password policy RFC
(http://tools.ietf.org/html/draft-behera-ldap-password-policy-10#section-8.2.6)
is not very explicit, but it seems to me that an admin user account should be
exempt from the pwdHistory check. Its not uncommon (though ill advised) for
admins to supply simple temporary
I have need to hash more than just the userPassword attribute (I store the
answers to security questions as well), and figured other people may need the
same feature. I would add it to the source branch, but my solution was to hard
code the list of hashed OID's in classes similar those in the
In my application, I use the an ldap connection pool. The login page checks
out a connection, binds as the user, returns the connection and then decides
what to do based upon the response. Standard stuff... However, we allow a
single grace authentication. The desired behavior is that they
Hi,
I am running into some sort of race condition when calling unBind(). I am not
sure exactly why but this simple test case demonstrates the issue:
@Test
public void testRebind() throws Exception
{
LdapConnection connection = pool.getConnection();
try
{