public class FreeIPAAuthenticationResponseHandler extends Object implements AuthenticationResponseHandler
Authenticator
should be configured to return 'krbPasswordExpiration',
'krbLoginFailedCount' and 'krbLastPwdChange' attributes so they can be consumed by this handler.Modifier and Type | Field and Description |
---|---|
static String[] |
ATTRIBUTES
Attributes needed to enforce password policy.
|
private Period |
expirationPeriod
Amount of time since a password was set until it will expire.
|
protected Logger |
logger
Logger for this class.
|
private int |
maxLoginFailures
Maximum number of login failures to allow.
|
private Period |
warningPeriod
Amount of time before expiration to produce a warning.
|
Constructor and Description |
---|
FreeIPAAuthenticationResponseHandler()
Default constructor.
|
FreeIPAAuthenticationResponseHandler(Period warning,
int loginFailures)
Creates a new freeipa authentication response handler.
|
FreeIPAAuthenticationResponseHandler(Period expiration,
Period warning,
int loginFailures)
Creates a new freeipa authentication response handler.
|
Modifier and Type | Method and Description |
---|---|
Period |
getExpirationPeriod()
Returns the amount of time since a password was set until it will expire.
|
int |
getMaxLoginFailures()
Returns the maximum login failures.
|
Period |
getWarningPeriod()
Returns the amount of time before expiration to produce a warning.
|
void |
handle(AuthenticationResponse response)
Handle the response from an ldap authentication.
|
void |
setExpirationPeriod(Period period)
Sets the amount of time since a password was set until it will expire.
|
void |
setMaxLoginFailures(int loginFailures)
Sets the maximum login failures.
|
void |
setWarningPeriod(Period period)
Sets the amount of time before expiration to produce a warning.
|
String |
toString() |
public static final String[] ATTRIBUTES
protected final Logger logger
private Period expirationPeriod
private Period warningPeriod
private int maxLoginFailures
public FreeIPAAuthenticationResponseHandler()
public FreeIPAAuthenticationResponseHandler(Period warning, int loginFailures)
warning
- length of time before expiration that should produce a warningloginFailures
- number of login failures to allowpublic FreeIPAAuthenticationResponseHandler(Period expiration, Period warning, int loginFailures)
expiration
- length of time that a password is validwarning
- length of time before expiration that should produce a warningloginFailures
- number of login failures to allowpublic void handle(AuthenticationResponse response)
AuthenticationResponseHandler
handle
in interface AuthenticationResponseHandler
response
- produced from an authenticationpublic int getMaxLoginFailures()
public void setMaxLoginFailures(int loginFailures)
loginFailures
- before lockout.public Period getExpirationPeriod()
public void setExpirationPeriod(Period period)
period
- expiration periodpublic Period getWarningPeriod()
public void setWarningPeriod(Period period)
period
- warning periodCopyright © 2003-2019 Virginia Tech. All Rights Reserved.