Package org.opends.server.extensions

Class AttributeValuePasswordValidator

java.lang.Object
org.opends.server.api.PasswordValidator<AttributeValuePasswordValidatorCfg>
org.opends.server.extensions.AttributeValuePasswordValidator
All Implemented Interfaces:
ConfigurationChangeListener<AttributeValuePasswordValidatorCfg>
public final class AttributeValuePasswordValidator extends PasswordValidator<AttributeValuePasswordValidatorCfg> implements ConfigurationChangeListener<AttributeValuePasswordValidatorCfg>
This class provides an OpenDS password validator that may be used to ensure that proposed passwords are not contained in another attribute in the user's entry.

  • Constructor Details

    • AttributeValuePasswordValidator

      public AttributeValuePasswordValidator()
      Creates a new instance of this attribute value password validator.

  • Method Details

    • initializePasswordValidator

      public void initializePasswordValidator(AttributeValuePasswordValidatorCfg configuration)
      Description copied from class: PasswordValidator
      Initializes this password validator based on the information in the provided configuration entry.
      Specified by:
      initializePasswordValidator in class PasswordValidator<AttributeValuePasswordValidatorCfg>
      Parameters:
      configuration - The configuration to use to initialize this password validator.

    • finalizePasswordValidator

      public void finalizePasswordValidator()
      Description copied from class: PasswordValidator
      Performs any finalization that might be required when this password validator is unloaded. No action is taken in the default implementation.
      Overrides:
      finalizePasswordValidator in class PasswordValidator<AttributeValuePasswordValidatorCfg>

    • passwordIsAcceptable

      public boolean passwordIsAcceptable(ByteString newPassword, Set<ByteString> currentPasswords, Operation operation, Entry userEntry, LocalizableMessageBuilder invalidReason)
      Description copied from class: PasswordValidator
      Indicates whether the provided password is acceptable for use by the specified user. If the password is determined to be unacceptable, then a human-readable explanation should be appended to the provided buffer.
      Specified by:
      passwordIsAcceptable in class PasswordValidator<AttributeValuePasswordValidatorCfg>
      Parameters:
      newPassword - The proposed clear-text password that should be validated.
      currentPasswords - The set of clear-text current passwords for the user (if available). Note that the current passwords may not always be available, and this may not comprise entire set of passwords currently for the user.
      operation - The operation that is being used to set the password. It may be an add, a modify, or a password modify operation.
      userEntry - The entry for the user whose password is being changed.
      invalidReason - The buffer to which the human-readable explanation should be appended if it is determined that the password is not acceptable.
      Returns:
      true if the password is acceptable, or false if not.

    • isConfigurationAcceptable

      public boolean isConfigurationAcceptable(AttributeValuePasswordValidatorCfg configuration, List<LocalizableMessage> unacceptableReasons)
      Description copied from class: PasswordValidator
      Indicates whether the provided configuration is acceptable for this password validator. It should be possible to call this method on an uninitialized password validator instance in order to determine whether the password validator would be able to use the provided configuration.
      Overrides:
      isConfigurationAcceptable in class PasswordValidator<AttributeValuePasswordValidatorCfg>
      Parameters:
      configuration - The password validator configuration for which to make the determination.
      unacceptableReasons - A list that may be used to hold the reasons that the provided configuration is not acceptable.
      Returns:
      true if the provided configuration is acceptable for this password validator, or false if not.

    • isConfigurationChangeAcceptable

      public boolean isConfigurationChangeAcceptable(AttributeValuePasswordValidatorCfg configuration, List<LocalizableMessage> unacceptableReasons)
      Description copied from interface: ConfigurationChangeListener
      Indicates whether the proposed change to the configuration is acceptable to this change listener.
      Specified by:
      isConfigurationChangeAcceptable in interface ConfigurationChangeListener<AttributeValuePasswordValidatorCfg>
      Parameters:
      configuration - The new configuration containing the changes.
      unacceptableReasons - A list that can be used to hold messages about why the provided configuration is not acceptable.
      Returns:
      Returns true if the proposed change is acceptable, or false if it is not.

    • applyConfigurationChange

      public ConfigChangeResult applyConfigurationChange(AttributeValuePasswordValidatorCfg configuration)
      Description copied from interface: ConfigurationChangeListener
      Applies the configuration changes to this change listener.
      Specified by:
      applyConfigurationChange in interface ConfigurationChangeListener<AttributeValuePasswordValidatorCfg>
      Parameters:
      configuration - The new configuration containing the changes.
      Returns:
      Returns information about the result of changing the configuration.

    • createPasswordQualityCriteria

      public com.forgerock.opendj.ldap.controls.PasswordQualityAdviceResponseControl.Criteria createPasswordQualityCriteria()
      Description copied from class: PasswordValidator
      Returns a password quality criteria corresponding to the type and parameters of this validator for use in a PasswordQualityAdviceResponseControl.
      Specified by:
      createPasswordQualityCriteria in class PasswordValidator<AttributeValuePasswordValidatorCfg>
      Returns:
      A password quality criteria corresponding to the type and parameters of this validator.