@ApplicationScoped
@Specializes
public class PasswordManagement
extends com.kobil.ssms.pam.impl.DefaultPamImpl
Modifier and Type | Class and Description |
---|---|
static class |
PasswordManagement.PasswordState
The possible password states.
|
Modifier and Type | Field and Description |
---|---|
static int |
DEFAULT_RETRY_COUNTER |
Constructor and Description |
---|
PasswordManagement() |
Modifier and Type | Method and Description |
---|---|
char[] |
addUser(String userLoginId,
boolean mustBeChanged,
boolean storeChapCompatibility)
Adds a user to the database.
|
boolean |
addUser(String userLoginId,
char[] password,
boolean validatePwdRestriction,
boolean mustBeChanged,
boolean storeChapCompatibility)
Adds a user to the database.
|
static char[] |
bytesToChars(byte[] bytes) |
com.kobil.ssms.pam.PamVerifyResult |
changePassword(String userLoginId,
char[] oldPwd,
char[] newPwd,
boolean validatePwdRestriction,
boolean mustBeChanged) |
com.kobil.ssms.pam.PamVerifyResult |
changePassword(String userLoginId,
char[] oldPwd,
char[] newPwd,
boolean validatePwdRestriction,
boolean mustBeChanged,
boolean storeChapCompatibility)
Changes the password.
|
com.kobil.ssms.pam.PamVerifyResult |
changePasswordChapCompatible(String userLoginId,
char[] oldPwd,
char[] newPwd,
boolean validatePwdRestriction,
boolean mustBeChanged)
changes password identical to
PamInterface.changePassword(String, char[], char[], boolean, boolean) ,
but makes sure that the password is stored in CHAP compatible way. |
boolean |
changeState(String userLoginId,
PasswordManagement.PasswordState state)
Changes the password state.
|
static byte[] |
charsToBytes(char[] chars)
converts char array to byte array using UTF-8 char set.
|
com.kobil.ssms.pam.PamVerifyResult |
decrementRetryCounterForUser(String userLoginId)
decrement retry count of user.
|
PamDecrementRTCResult |
decrementRetryCounterForUser(String userLoginId,
PamUser pamUser)
decrement retry count of user.
|
char[] |
getGeneratedPassword() |
long |
getLockedUntil(PamUser pUser)
Gets the locked until date in milliseconds.
|
Date |
getLockedUntilDate(PamUser pUser)
Gets the locked until date.
|
String[] |
getLockReasons()
Gets all possible lock reasons.
|
String |
getOpSubjectDN(String uid) |
static String |
getOpSubjectDN(com.kobil.ssms.kernel.logic.permission.UserSession userSession,
String uid,
org.apache.logging.log4j.Logger logger)
setter for opSubjectDN - if a injection of operatorSession is not
successful set operatorSubjectDN to uid and if this is null or empty set
to a default This because if methods called by service there is no
OperatorSessionBean injectable because operatorSession is a session
scoped bean.
|
int |
getTemporaryLock(PamUser pUser)
Gets the temporary lock in seconds.
|
PamUser |
getUserInfo(String userLoginId)
Gets the information for an user.
|
com.kobil.ssms.kernel.presentation.b2b.RangeResponse<PamKernelUser> |
getUserList(com.kobil.ssms.kernel.logic.filter.CombinedFilter cFilters,
boolean getAll)
Gets all users which match the given filter.
|
com.kobil.ssms.kernel.logic.query.SsmsQueryResultList<PamUserDTO> |
getUserList(com.kobil.ssms.kernel.logic.filter.CombinedFilter cFilters,
com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams,
com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortColumnInfo)
Get PAM Kernel User entries from database by applying filters and limit
of rows to be selected and offset.
|
com.kobil.ssms.kernel.presentation.b2b.RangeResponse<PamKernelUser> |
getUserList(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> usersFilter,
boolean getAll)
Gets all users which match the given filter.
|
com.kobil.ssms.kernel.logic.query.SsmsQueryResultList<PamUserDTO> |
getUserList(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> usersFilter,
com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams,
com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortColumnInfo)
Gets all users which match the given filter.
|
long |
getUserListCount(com.kobil.ssms.kernel.logic.filter.CombinedFilter cFilters)
Get Number of users from database by applying filters.
|
long |
getUserListCount(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> userFilter)
Get Number of users from database by applying filters.
|
com.kobil.ssms.kernel.presentation.b2b.RangeResponse<PamUserDTO> |
getUserListForGui(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> usersFilter,
com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams,
com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortingInfo) |
com.kobil.ssms.pam.UserPasswordDto |
getUserPasswordDto(String userLoginId) |
com.kobil.ssms.kernel.presentation.b2b.RangeResponse<String> |
getUsers(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> userFilter,
com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams,
com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortColumnInfo)
Gets all user ids for a given filter.
|
com.kobil.ssms.kernel.presentation.b2b.RangeResponse<String> |
getUsers(String filter,
Map<String,com.kobil.ssms.kernel.logic.filter.jpa.JPAFilterColumnInfo> allowedUserFilters,
com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams,
com.kobil.ssms.kernel.logic.pagination.OrderInput orderInput)
Gets all user ids for a given filter.
|
boolean |
isPamUser(String userId) |
boolean |
isPamUserLocked(PamUser pUser)
check if a given PamUser is locked or lockedUntil is set or exceeds
|
com.kobil.ssms.pam.PamVerifyResult |
isPamUserLocked(String userLoginId)
looking for the pam user and if the pam user is temporarily locked.
|
boolean |
isPamUserTemporarilyLocked(PamUser pUser)
verify if the property temporarilyLocked is set or not, and if set then
is it currently locked?!
|
boolean |
lockUser(String userLoginId,
String reasonKey)
Locks a user.
|
boolean |
removePassword(String userLoginId)
Deletes a user password.
|
boolean |
removeUserByLoginId(String userLoginId)
Deletes a user password and the user too.
|
char[] |
resetPassword(String userLoginId,
boolean mustBeChanged,
boolean storeChapCompatible)
Resets the password.
|
void |
resetRetryCounterToMaxValue(String userLoginId)
Reset the retry counter, of the given user, to the maximum value.
|
boolean |
setOrChangePassword(String userLoginId,
char[] pwd,
boolean validatePwdRestriction,
boolean mustBeChanged,
boolean doReport,
boolean storeChapCompatible)
Encrypts the password and adds it to the database.
|
boolean |
setOrChangePasswordChapCompatibleWithoutDBTransaction(String userLoginId,
char[] pwd,
boolean validatePwdRestriction,
boolean mustBeChanged,
boolean doReport)
sets or overwrites password identical to
PamInterface.setOrChangePasswordWithoutDBTransaction(String, char[], boolean, boolean, boolean) ,
but makes sure that the password is stored in CHAP compatible way. |
boolean |
setOrChangePasswordWithoutDBTransaction(String userLoginId,
char[] pwd,
boolean validatePwdRestriction,
boolean mustBeChanged,
boolean doReport) |
boolean |
unlockUser(String userLoginId)
Unlocks a user.
|
boolean |
userExists(String userLoginId) |
void |
validatePassword(char[] pwd) |
com.kobil.ssms.pam.PamVerifyResult |
verifyPassword(boolean resetRetryCounter,
String userLoginId,
char[] pwdToVerify)
Verifies a password.
|
com.kobil.ssms.pam.PamVerifyResult |
verifyPassword(String userLoginId,
char[] pwdToVerify) |
com.kobil.ssms.pam.PamVerifyResult |
verifyPasswordWithoutDBTransaction(String userLoginId,
char[] pwdToVerify) |
public static final int DEFAULT_RETRY_COUNTER
public void validatePassword(char[] pwd) throws com.kobil.ssms.pam.PamLogicException
validatePassword
in interface com.kobil.ssms.pam.PamInterface
validatePassword
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
public boolean setOrChangePasswordWithoutDBTransaction(String userLoginId, char[] pwd, boolean validatePwdRestriction, boolean mustBeChanged, boolean doReport) throws com.kobil.ssms.pam.PamLogicException
setOrChangePasswordWithoutDBTransaction
in interface com.kobil.ssms.pam.PamInterface
setOrChangePasswordWithoutDBTransaction
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
@TransactionalWithReportPam public boolean setOrChangePassword(String userLoginId, char[] pwd, boolean validatePwdRestriction, boolean mustBeChanged, boolean doReport, boolean storeChapCompatible) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user login id.pwd
- The new password.validatePwdRestriction
- If true, the password is checked for restriction validity.mustBeChanged
- If true, the password must be changed the next time.doReport
- If true, a reporting message will be written.storeChapCompatible
- If true, password is additionally stored in a CHAP compatible
way. I.e. PAM is able to recover password's cleartext.com.kobil.ssms.pam.PamLogicException
- PamLogicException.USER_NOT_FOUND if the user does exist.
PamLogicException.INVALID_PASSWORD if the password is not valid.
PamLogicException.GENERAL_ERROR if something
mysterious went wrong.public static final byte[] charsToBytes(char[] chars)
chars
- to convertpublic static final char[] bytesToChars(byte[] bytes)
@TransactionalWithReportPam public com.kobil.ssms.pam.PamVerifyResult verifyPassword(boolean resetRetryCounter, String userLoginId, char[] pwdToVerify) throws com.kobil.ssms.pam.PamLogicException
resetRetryCounter
- true
In case of a successful password
verification set the retry counter to max value and reset the
date of the last failed login. false
In case of a
successful password verification do not set the retry counter
to max value and do not reset the date of the last failed
login.userLoginId
- The user login id.pwdToVerify
- The user password.com.kobil.ssms.pam.PamLogicException
- PamLogicException.NOT_PAM_USER if the user does not have an
assigned password.
PamLogicException.HASHING_ERROR
PamLogicException.CRYPTING_ERROR
PamLogicException.USERID_INVALID - Illegal argument exception thrown from kernel logic
PamLogicException.USER_NOT_FOUND - if not a kernel userIllegalArgumentException
- for verification of param userLoginId and pwdToVerify@TransactionalWithReportPam public com.kobil.ssms.pam.PamVerifyResult verifyPassword(String userLoginId, char[] pwdToVerify) throws com.kobil.ssms.pam.PamLogicException
verifyPassword
in interface com.kobil.ssms.pam.PamInterface
verifyPassword
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
- PamLogicException.NOT_PAM_USER if the user does not have an
assigned password.
PamLogicException.HASHING_ERROR
PamLogicException.CRYPTING_ERROR
PamLogicException.USERID_INVALID - Illegal argument exception thrown from kernel logic
PamLogicException.USER_NOT_FOUND - if not a kernel userIllegalArgumentException
- for verification of param userLoginId and pwdToVerifypublic com.kobil.ssms.pam.PamVerifyResult verifyPasswordWithoutDBTransaction(String userLoginId, char[] pwdToVerify) throws com.kobil.ssms.pam.PamLogicException
verifyPasswordWithoutDBTransaction
in interface com.kobil.ssms.pam.PamInterface
verifyPasswordWithoutDBTransaction
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
- PamLogicException.NOT_PAM_USER if the user does not have an
assigned password.
PamLogicException.HASHING_ERROR
PamLogicException.CRYPTING_ERROR
PamLogicException.USERID_INVALID - Illegal argument exception thrown from kernel logic
PamLogicException.USER_NOT_FOUND - if not a kernel userIllegalArgumentException
- for verification of param userLoginId and pwdToVerify@TransactionalWithReportPam public com.kobil.ssms.pam.PamVerifyResult changePassword(String userLoginId, char[] oldPwd, char[] newPwd, boolean validatePwdRestriction, boolean mustBeChanged, boolean storeChapCompatibility) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user id.oldPwd
- The old password.newPwd
- The new password.validatePwdRestriction
- If true, the password is checked for restriction validity.mustBeChanged
- If true, the password must be changed the next time.storeChapCompatibility
- If true, password is additionally stored in a CHAP compatible
way. I.e. PAM is able to recover password's cleartext.com.kobil.ssms.pam.PamLogicException
- PamLogicException.NOT_PAM_USER if the user does not have an
assigned password.@TransactionalWithReportPam public com.kobil.ssms.pam.PamVerifyResult changePassword(String userLoginId, char[] oldPwd, char[] newPwd, boolean validatePwdRestriction, boolean mustBeChanged) throws com.kobil.ssms.pam.PamLogicException
changePassword
in interface com.kobil.ssms.pam.PamInterface
changePassword
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
@Transactional public char[] resetPassword(String userLoginId, boolean mustBeChanged, boolean storeChapCompatible) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user id which password shall be reset.mustBeChanged
- If true, the password must be changed the next time.storeChapCompatible
- If true, password is additionally stored in a CHAP compatible
way. I.e. PAM is able to recover password's cleartext.com.kobil.ssms.pam.PamLogicException
- PamLogicException.NOT_PAM_USER if the user does not have an
assigned password.@Transactional public boolean removePassword(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user login id.IllegalArgumentException
- in case parameter userLoginId is null or emptycom.kobil.ssms.pam.PamLogicException
- PamLogicException.USER_NOT_FOUND if the user does exist.
PamLogicException.NOT_PAM_USER if the user does not have an
assigned password.public boolean removeUserByLoginId(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- loginId of the usercom.kobil.ssms.pam.PamLogicException
- GENERAL_ERROR if an unexpected error occurs USERID_INVALID if
the userLoginId is invalid USER_DELETION_PROHIBITED if the
user deletion is prohibited@Transactional public boolean lockUser(String userLoginId, String reasonKey) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user login id.reasonKey
- The resource bundle key of the reason for the locking.com.kobil.ssms.pam.PamLogicException
- PamLogicException.USERID_INVALID if the userLoginId is
invalid. PamLogicException.USER_NOT_FOUND if the user does
exist. PamLogicException.NOT_PAM_USER if the user does not
have an assigned password.@Transactional public boolean unlockUser(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user login id.com.kobil.ssms.pam.PamLogicException
- PamLogicException.USER_NOT_FOUND if the user does not exist.
PamLogicException.NOT_PAM_USER if the user does not have an
assigned password.@Transactional public boolean addUser(String userLoginId, char[] password, boolean validatePwdRestriction, boolean mustBeChanged, boolean storeChapCompatibility) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user id.password
- The password.validatePwdRestriction
- If true, the password is checked for restriction validity.mustBeChanged
- If true, the password must be changed the next time.storeChapCompatibility
- If true, password is additionally stored in a CHAP compatible
way. I.e. PAM is able to recover password's cleartext.com.kobil.ssms.pam.PamLogicException
- PamLogicException.USERID_INVALID, if the User-ID is not
valid.@Transactional public char[] addUser(String userLoginId, boolean mustBeChanged, boolean storeChapCompatibility) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user id.mustBeChanged
- If true, the password must be changed the next time.storeChapCompatibility
- If true, password is additionally stored in a CHAP compatible
way. I.e. PAM is able to recover password's cleartext.com.kobil.ssms.pam.PamLogicException
- PamLogicException.GENERAL_ERROR if something went wrong while
adding the user and/or password.@Transactional public boolean changeState(String userLoginId, PasswordManagement.PasswordState state) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user id.state
- The password state which shall be set.com.kobil.ssms.pam.PamLogicException
- PamLogicException.USERID_INVALID if the userLoginId is not
valid. PamLogicException.USER_NOT_FOUND if the user does
exist. PamLogicException.NOT_PAM_USER if the user does not
have an assigned password.@TransactionalWithReportPam public com.kobil.ssms.pam.PamVerifyResult decrementRetryCounterForUser(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- com.kobil.ssms.pam.PamLogicException
- @TransactionalWithReportPam public PamDecrementRTCResult decrementRetryCounterForUser(String userLoginId, PamUser pamUser) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- pamUser
- SecovidUsercom.kobil.ssms.pam.PamLogicException
- @Transactional public void resetRetryCounterToMaxValue(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The given userId.com.kobil.ssms.pam.PamLogicException
- PamErrorCode.MISSING_PARAMETER_UID if the userId is null or
empty. PamErrorCode.NOT_PAM_USER if the user is not a PAM
user.public boolean isPamUserLocked(PamUser pUser)
pUser
- - mandatory, PamUserIllegalArgumentException
- if the parameter is null or emptypublic boolean isPamUserTemporarilyLocked(PamUser pUser)
pUser
- public com.kobil.ssms.pam.PamVerifyResult isPamUserLocked(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- com.kobil.ssms.pam.PamLogicException
- public int getTemporaryLock(PamUser pUser) throws com.kobil.ssms.pam.PamLogicException
pUser
- The pam user.com.kobil.ssms.pam.PamLogicException
public Date getLockedUntilDate(PamUser pUser) throws com.kobil.ssms.pam.PamLogicException
pUser
- The pam user.com.kobil.ssms.pam.PamLogicException
public long getLockedUntil(PamUser pUser) throws com.kobil.ssms.pam.PamLogicException
pUser
- The pam user.com.kobil.ssms.pam.PamLogicException
- PamErrorCodes.USER_NOT_FOUND IllegalArgumentException if
user.retrycounter == 0public char[] getGeneratedPassword() throws com.kobil.ssms.pam.PamLogicException
getGeneratedPassword
in interface com.kobil.ssms.pam.PamInterface
getGeneratedPassword
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
public PamUser getUserInfo(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
userLoginId
- The user id.com.kobil.ssms.pam.PamLogicException
- PamLogicException.USER_NOT_FOUND if the user was not found.
PamLogicException.NOT_PAM_USER if the user does not have a
assigned a password.public boolean userExists(String userLoginId)
userExists
in interface com.kobil.ssms.pam.PamInterface
userExists
in class com.kobil.ssms.pam.impl.DefaultPamImpl
public com.kobil.ssms.kernel.presentation.b2b.RangeResponse<String> getUsers(String filter, Map<String,com.kobil.ssms.kernel.logic.filter.jpa.JPAFilterColumnInfo> allowedUserFilters, com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams, com.kobil.ssms.kernel.logic.pagination.OrderInput orderInput) throws com.kobil.ssms.pam.PamLogicException
filter
- The filter which has to be used when the user information are
filtered.orderInput
- rangeParams
- allowedUserFilters
- com.kobil.ssms.pam.PamLogicException
- PamLogicException.GENERAL_ERROR if getting the entries
failed.public com.kobil.ssms.kernel.presentation.b2b.RangeResponse<String> getUsers(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> userFilter, com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams, com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortColumnInfo) throws com.kobil.ssms.pam.PamLogicException
userFilter
- The filter which is used to filter the entries.getAll
- If true, all entries are filtered, else only a maximum number.com.kobil.ssms.pam.PamLogicException
public String[] getLockReasons()
public long getUserListCount(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> userFilter) throws com.kobil.ssms.pam.PamLogicException
com.kobil.ssms.pam.PamLogicException
- PamLogicException.GENERAL_ERROR if getting the users failed.public long getUserListCount(com.kobil.ssms.kernel.logic.filter.CombinedFilter cFilters) throws com.kobil.ssms.pam.PamLogicException
com.kobil.ssms.pam.PamLogicException
- PamLogicException.GENERAL_ERROR if getting the users failed.public com.kobil.ssms.kernel.presentation.b2b.RangeResponse<PamKernelUser> getUserList(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> usersFilter, boolean getAll) throws com.kobil.ssms.pam.PamLogicException
usersFilter
- The filter which is used to filter the entries.getAll
- If true, all entries are filtered, else only a maximum number.com.kobil.ssms.pam.PamLogicException
- PamLogicException.GENERAL_ERROR if getting the users failed.public com.kobil.ssms.kernel.presentation.b2b.RangeResponse<PamKernelUser> getUserList(com.kobil.ssms.kernel.logic.filter.CombinedFilter cFilters, boolean getAll) throws com.kobil.ssms.pam.PamLogicException
cFilters
- The filter which is used to filter the entries.getAll
- If true, all entries are filtered, else only a maximum number.com.kobil.ssms.pam.PamLogicException
- PamLogicException.GENERAL_ERROR if getting the users failed.public com.kobil.ssms.kernel.logic.query.SsmsQueryResultList<PamUserDTO> getUserList(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> usersFilter, com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams, com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortColumnInfo) throws com.kobil.ssms.pam.PamLogicException
usersFilter
- The filter which is used to filter the entries.sortColumnInfo
- rangeParams
- getAll
- com.kobil.ssms.pam.PamLogicException
- PamLogicException.GENERAL_ERROR if getting the users failed.public com.kobil.ssms.kernel.presentation.b2b.RangeResponse<PamUserDTO> getUserListForGui(com.kobil.ssms.kernel.logic.filter.FilterCollection<? extends com.kobil.ssms.kernel.logic.filter.InternalSearchFilter> usersFilter, com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams, com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortingInfo) throws com.kobil.ssms.pam.PamLogicException
com.kobil.ssms.pam.PamLogicException
public com.kobil.ssms.kernel.logic.query.SsmsQueryResultList<PamUserDTO> getUserList(com.kobil.ssms.kernel.logic.filter.CombinedFilter cFilters, com.kobil.ssms.kernel.logic.pagination.RangeParams rangeParams, com.kobil.ssms.kernel.logic.filter.jpa.JPASortingColumnInfo sortColumnInfo) throws com.kobil.ssms.pam.PamLogicException
cFilters
- rowLimit
- offset
- sortColumnInfo
- rangeParams
- com.kobil.ssms.pam.PamLogicException
public static String getOpSubjectDN(com.kobil.ssms.kernel.logic.permission.UserSession userSession, String uid, org.apache.logging.log4j.Logger logger)
public boolean isPamUser(String userId)
@TransactionalWithReportPam public com.kobil.ssms.pam.PamVerifyResult changePasswordChapCompatible(String userLoginId, char[] oldPwd, char[] newPwd, boolean validatePwdRestriction, boolean mustBeChanged) throws com.kobil.ssms.pam.PamLogicException
PamInterface.changePassword(String, char[], char[], boolean, boolean)
,
but makes sure that the password is stored in CHAP compatible way.changePasswordChapCompatible
in interface com.kobil.ssms.pam.PamInterfaceChapCompatible
changePasswordChapCompatible
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
PamInterfaceChapCompatible.changePasswordChapCompatible(String, char[], char[], boolean, boolean)
public boolean setOrChangePasswordChapCompatibleWithoutDBTransaction(String userLoginId, char[] pwd, boolean validatePwdRestriction, boolean mustBeChanged, boolean doReport) throws com.kobil.ssms.pam.PamLogicException
PamInterface.setOrChangePasswordWithoutDBTransaction(String, char[], boolean, boolean, boolean)
,
but makes sure that the password is stored in CHAP compatible way.setOrChangePasswordChapCompatibleWithoutDBTransaction
in interface com.kobil.ssms.pam.PamInterfaceChapCompatible
setOrChangePasswordChapCompatibleWithoutDBTransaction
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
PamInterfaceChapCompatible.setOrChangePasswordChapCompatibleWithoutDBTransaction(String, char[], boolean, boolean, boolean)
public com.kobil.ssms.pam.UserPasswordDto getUserPasswordDto(String userLoginId) throws com.kobil.ssms.pam.PamLogicException
getUserPasswordDto
in interface com.kobil.ssms.pam.PamInterfaceChapCompatible
getUserPasswordDto
in class com.kobil.ssms.pam.impl.DefaultPamImpl
com.kobil.ssms.pam.PamLogicException
Copyright © 2022 KOBIL Systems GmbH. All rights reserved.