public interface ChangeablePasswordCredential
PasswordCredentialValidator
to support changing user passwords in the backing data store.PasswordCredentialValidator
Modifier and Type | Method and Description |
---|---|
PasswordChangeResult |
changePassword(String username,
String oldPassword,
String newPassword,
Map<String,Object> inParameters)
Change a user's password in the data store.
|
default boolean |
isChangePasswordEmailNotifiable()
Indicates whether attributes required to email the user about password change will be returned by the
PasswordCredentialValidator . |
boolean |
isPasswordChangeable()
Indicate whether passwords can be changed in the current state.
|
default boolean |
isPendingPasswordExpiryNotifiable()
Indicates whether attributes required to warn the user about expiring password will be returned.
|
PasswordChangeResult changePassword(String username, String oldPassword, String newPassword, Map<String,Object> inParameters) throws PasswordValidationException
username
- name of the user attempting to change their passwordoldPassword
- the user's existing passwordnewPassword
- the user's new passwordinParameters
- additional parameters that can be passed to an implementationPasswordValidationException
- for system errorsPasswordCredentialValidatorAuthnException
- for user authentication errorsboolean isPasswordChangeable()
PasswordCredentialValidator
, it could also depend on some system configuration
or current condition. For example, passwords can only be changed in Active Directory if SSL is
enabled on the LDAP data store.
default boolean isPendingPasswordExpiryNotifiable()
default boolean isChangePasswordEmailNotifiable()
PasswordCredentialValidator
.
Here are the attributes that should be returned:
1) The first name with the attribute name 'givenName'.
2) The email address with the attribute name 'mail'.Copyright 2019 Ping Identity Corp. All rights reserved.