I am implementing a Expired Password scenario, integrating with an external LDAP wherein the password reset is managed by a different site. LDAPStorageProvider.validPassword expects a mapper which sets required action to RequiredAction.UPDATE_PASSWORD; Should I create a custom mapper, override onAuthenticationFailure and call LoginFormsProvider.createPasswordReset(), that I can customize with a link to go to another site to reset password? The default UPDATE_PASSWORD wants the LDAP provider to be writable, in my case the LDAP is read only. I managed to get to createPasswordReset(), but the page does not show and the authentication is reported as successful. What is the best way to implement this?
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| Custom RequiredAction to change/validate password | 0 | 392 | February 21, 2023 | |
| Forgot Password from LDAP provide by RODC | 0 | 31 | September 16, 2024 | |
| "Expire Password" policy in Custom User Storage Provider | 4 | 3790 | March 30, 2023 | |
| Password Expiry for LDAP users | 5 | 232 | August 9, 2024 | |
| Custom User Storage Provider - How to handle Password expired scenario | 1 | 939 | December 19, 2022 |