defining custom password validator in 3.2.0?
Jeffrey Eaton
jeaton at cmu.edu
Mon Dec 14 14:47:12 EST 2015
>
> I do have that defined. In conf/authn/password-authn-config.xml I do:
>
> <import resource="cmujaas-authn-config.xml" />
>
> And then in conf/auth/cmujaas-authn-config.xml I ha
>
> <alias name="CMUValidateUsernamePasswordAgainstJAAS" alias="ValidateUsernamePassword"/>
>
> I wonder if I can just define the bean in there. I'll try that.
>
> -jeaton
> --
> To unsubscribe from this list send an email to users-unsubscribe at shibboleth.net
Defining my bean to reference my custom class in conf/authn/cmujaas-authn-config.xml does seem to work. I now have this in there:
<alias name="CMUValidateUsernamePasswordAgainstJAAS" alias="ValidateUsernamePassword"/>
<bean id="CMUValidateUsernamePasswordAgainstJAAS"
class="edu.cmu.idp.authn.impl.CMUValidateUsernamePasswordAgainstJAAS" scope="prototype"
p:httpServletRequest-ref="shibboleth.HttpServletRequest"
p:savePasswordToCredentialSet="#{getObject('shibboleth.authn.Password.RetainAsPrivateCredential') != null ? getObject('shibboleth.authn.Password.RetainAsPrivateCredential') : false}"
p:loginConfigNames-ref="shibboleth.authn.JAAS.LoginConfigNames" p:loginConfigType="JavaLoginConfig"
p:addDefaultPrincipals="#{getObject('shibboleth.authn.Password.addDefaultPrincipals') ?:
(getObject('shibboleth.authn.Password.PrincipalOverride') == null
or getObject('shibboleth.authn.Password.PrincipalOverride').isEmpty())}"
p:supportedPrincipals="#{getObject('shibboleth.authn.Password.PrincipalOverride')}"
p:classifiedMessages-ref="shibboleth.authn.Password.ClassifiedMessageMap"
p:resultCachingPredicate="#{getObject('shibboleth.authn.Password.resultCachingPredicate')}">
<property name="loginConfigParameters">
<bean class="java.security.URIParameter">
<constructor-arg ref="shibboleth.authn.JAAS.JAASConfigURI" />
</bean>
</property>
</bean>
and that seems to work.
More information about the users
mailing list