@Extensible @DirectoryServerExtension @DirectoryProxyServerExtension(appliesToLocalContent=true, appliesToRemoteContent=false) @SynchronizationServerExtension(appliesToLocalContent=true, appliesToSynchronizedContent=false) @ThreadSafety(level=INTERFACE_THREADSAFE) public abstract class ScriptedPasswordValidator extends java.lang.Object implements Reconfigurable<PasswordValidatorConfig>
dsconfig create-password-validator \ --validator-name "{validator-name}" \ --type groovy-scripted \ --set enabled:true \ --set "script-class:{class-name}" \ --set "script-argument:{name=value}"where "{validator-name}" is the name to use for the password validator instance, "{class-name}" is the fully-qualified name of the Groovy class written using this API, and "{name=value}" represents name-value pairs for any arguments to provide to the password validator. If multiple arguments should be provided to the password validator, then the "
--set script-argument:{name=value}
" option should be
provided multiple times.PasswordValidator
Constructor and Description |
---|
ScriptedPasswordValidator()
Creates a new instance of this password validator.
|
Modifier and Type | Method and Description |
---|---|
ResultCode |
applyConfiguration(PasswordValidatorConfig config,
ArgumentParser parser,
java.util.List<java.lang.String> adminActionsRequired,
java.util.List<java.lang.String> messages)
Attempts to apply the configuration from the provided argument parser to
this extension.
|
void |
defineConfigArguments(ArgumentParser parser)
Updates the provided argument parser to define any configuration arguments
which may be used by this extension.
|
void |
finalizePasswordValidator()
Performs any cleanup which may be necessary when this password validator is
to be taken out of service.
|
PasswordQualityRequirement |
getPasswordQualityRequirement()
Retrieves the password quality requirement for this password validator, if
available.
|
void |
initializePasswordValidator(DirectoryServerContext serverContext,
PasswordValidatorConfig config,
ArgumentParser parser)
Initializes this password validator.
|
boolean |
invokeForAdd()
Indicates whether this password validator should be invoked for add
operations that attempt to create an entry containing one or more
password values.
|
boolean |
invokeForAdministrativeReset()
Indicates whether this password validator should be invoked for modify or
password modify operations that represent one user's attempt to change the
password for another user.
|
boolean |
invokeForSelfChange()
Indicates whether this password validator should be invoked for modify or
password modify operations that represent a user's attempt to change
his/her own password.
|
boolean |
isConfigurationAcceptable(PasswordValidatorConfig config,
ArgumentParser parser,
java.util.List<java.lang.String> unacceptableReasons)
Indicates whether the configuration represented by the provided argument
parser is acceptable for use by this extension.
|
abstract boolean |
isPasswordAcceptable(OperationContext operationContext,
ByteString newPassword,
java.util.Set<ByteString> currentPasswords,
Entry userEntry,
java.lang.StringBuilder invalidReason)
Indicates whether the proposed password is acceptable for the specified
user.
|
public ScriptedPasswordValidator()
initializePasswordValidator
method.public void defineConfigArguments(ArgumentParser parser) throws ArgumentException
defineConfigArguments
in interface Configurable
parser
- The argument parser to be updated with the configuration
arguments which may be used by this extension.ArgumentException
- If a problem is encountered while updating the
provided argument parser.public void initializePasswordValidator(DirectoryServerContext serverContext, PasswordValidatorConfig config, ArgumentParser parser) throws LDAPException
serverContext
- A handle to the server context for the server in
which this extension is running.config
- The general configuration for this password
validator.parser
- The argument parser which has been initialized from
the configuration for this password validator.LDAPException
- If a problem occurs while initializing this
password validator.public void finalizePasswordValidator()
public boolean isConfigurationAcceptable(PasswordValidatorConfig config, ArgumentParser parser, java.util.List<java.lang.String> unacceptableReasons)
isConfigurationAcceptable
in interface Reconfigurable<PasswordValidatorConfig>
config
- The general configuration for this extension.parser
- The argument parser that has been used to
parse the proposed configuration for this
extension.unacceptableReasons
- A list to which messages may be added to
provide additional information about why the
provided configuration is not acceptable.true
if the configuration in the provided argument parser
appears to be acceptable, or false
if not.public ResultCode applyConfiguration(PasswordValidatorConfig config, ArgumentParser parser, java.util.List<java.lang.String> adminActionsRequired, java.util.List<java.lang.String> messages)
applyConfiguration
in interface Reconfigurable<PasswordValidatorConfig>
config
- The general configuration for this extension.parser
- The argument parser that has been used to
parse the new configuration for this
extension.adminActionsRequired
- A list to which messages may be added to
provide additional information about any
additional administrative actions that may
be required to apply some of the
configuration changes.messages
- A list to which messages may be added to
provide additional information about the
processing performed by this method.SUCCESS
should be
used to indicate that all processing completed successfully. Any
other result will indicate that a problem occurred during
processing.public boolean invokeForAdd()
true
if this password validator should be invoked for
add operations that include one or more passwords, or
false
if not.public boolean invokeForSelfChange()
true
if this password validator should be invoked for
self password change operations, or false
if not.public boolean invokeForAdministrativeReset()
true
if this password validator should be invoked for
administrative password reset operations, or false
if not.public PasswordQualityRequirement getPasswordQualityRequirement()
null
if no requirement information is available.public abstract boolean isPasswordAcceptable(OperationContext operationContext, ByteString newPassword, java.util.Set<ByteString> currentPasswords, Entry userEntry, java.lang.StringBuilder invalidReason)
operationContext
- The operation context for the associated request.
It may be associated with an add, modify, or
password modify operation.newPassword
- The proposed new password for the user that
should be validated. It will not be encoded or
obscured in any way.currentPasswords
- The current set of passwords for the user, if
available. It may be null
if this is
not available. Note that even if one or more
current passwords are available, it may not
constitute the complete set of passwords for the
user.userEntry
- The entry for the user whose password is being
changed.invalidReason
- A buffer to which a message may be appended to
indicate why the proposed password is not
acceptable.true
if the proposed new password is acceptable, or
false
if not.