PWResetUserValidationModelImpl.java revision ebe2bbed96ad174bcd6fc7a1136fade167573ddb
/**
* DO NOT ALTER OR REMOVE COPYRIGHT NOTICES OR THIS HEADER.
*
* Copyright (c) 2007 Sun Microsystems Inc. All Rights Reserved
*
* The contents of this file are subject to the terms
* of the Common Development and Distribution License
* (the License). You may not use this file except in
* compliance with the License.
*
* You can obtain a copy of the License at
* See the License for the specific language governing
* permission and limitations under the License.
*
* When distributing Covered Code, include this CDDL
* Header Notice in each file and include the License file
* at opensso/legal/CDDLv1.0.txt.
* If applicable, add the following below the CDDL Header,
* with the fields enclosed by brackets [] replaced by
* your own identifying information:
* "Portions Copyrighted [year] [name of copyright owner]"
*
* $Id: PWResetUserValidationModelImpl.java,v 1.3 2010/01/28 08:17:10 bina Exp $
*
* Portions Copyrighted 2012-2014 ForgeRock AS
* Portions Copyrighted 2012 Open Source Solution Technology Corporation
*/
/**
* <code>PWResetUserValidationModelImpl</code> defines a set of methods that
* are required by password reset user validation viewbean.
*/
public class PWResetUserValidationModelImpl extends PWResetModelImpl
implements PWResetUserValidationModel {
/**
* Name of password reset user validation attribute
*/
private static final String PW_RESET_USER_VALIDATE_ATTR =
"iplanet-am-password-reset-userValidate";
/**
* Name of password reset base DN attribute
*/
private static final String PW_RESET_BASE_DN_ATTR =
"iplanet-am-password-reset-baseDN";
/**
* Name of password reset user search filter
*/
private static final String PW_RESET_SEARCH_FILTER_ATTR =
"iplanet-am-password-reset-searchFilter";
/**
* Name of user service login status attribute
*/
private static final String USER_SERVICE_LOGIN_STATUS =
"iplanet-am-user-login-status";
/**
* Name of user service account life attribute
*/
private static final String USER_SERVICE_ACCOUNT_LIFE =
"iplanet-am-user-account-life";
/**
* Name of user service ns account lockout attribute
*/
/**
* Name of password reset invalid char regex attribute
* regular expression defined for this attribute will be used
* to locate invalid chars in user attribute
*/
private static final String PW_RESET_INVALIDCHAR_REGEX =
"openam-am-password-reset-invalidchar-regex";
/**
* Name for string false value
*/
private boolean realmFlag = false;
private boolean validRealm = false;
/**
* Constructs a password reset user validation model object
*
*/
public PWResetUserValidationModelImpl() {
super();
}
/**
* Returns user attribute configured in password reset service.
*
* @param orgDN Realm name.
* @return user attribute configured in password reset service.
*/
try {
} catch (SSOException e) {
} catch (SMSException e) {
}
return null;
}
/**
* Returns <code>true</code> if the user exists. If more than one users is
* found then it will return false and view bean will display an error
* message.
*
* @param userAttrValue User attribute value to search for.
* @param userAttrName User attribute name to search for.
* @param realm Base realm
* @return <code>true</code> if user exists.
*/
public boolean isUserExists(
) {
boolean found = false;
try {
"multipleUsersExists.message");
} else {
found = true;
}
} else {
}
} catch (SSOException e) {
errorMsg = getErrorString(e);
} catch (IdRepoException e) {
errorMsg = getErrorString(e);
}
return found;
}
/**
* Gets user validation title
*
* @return user validation title
*/
public String getUserValidateTitleString() {
return getLocalizedString("userValidate.title");
}
/**
* Gets next button label
*
* @return next button label
*/
public String getNextBtnLabel() {
return getLocalizedString("next.button");
}
/**
* Gets the base DN stored in password reset service. For the
* case when the template does not exists for the organization DN passed,
* it will set the base DN to organization DN if its from URL,
* otherwise it will set base DN to default which is root.
*
* @param realm Realm name.
* @return base DN
*/
try {
} catch (SSOException e) {
} catch (SMSException e) {
}
if (realmFlag) {
} else {
try {
} catch (SSOException e) {
} catch (SMSException e) {
}
baseDN = getRootSuffix();
}
}
}
return baseDN;
}
throws SSOException, SMSException {
}
/**
* Sets the organization DN flag
*
* @param value organization flag value either true or false
*/
public void setRealmFlag(boolean value) {
}
/**
* Returns <code>true</code> if the realm is valid.
*
* @return <code>true</code> if the realm is valid.
*/
public boolean isValidRealm() {
return validRealm;
}
/**
* Returns the localized string for attribute name in the user
* service.
*
* @param attrName attribute name
* @return localized string for the attribute
*/
try {
if (attrSchema != null) {
}
}
}
} catch (SSOException ssoe) {
if (debug.warningEnabled()) {
}
} catch (SMSException smse ){
if (debug.warningEnabled()) {
}
}
return str;
}
/**
* Returns missing user attribute message.
*
* @param userAttrName user attribute name.
* @return missing user attribute message.
*/
return errorMsg;
}
/**
* Returns true if the user is active and account is not expired.
* This method will use the user DN stored in the model to
* determine if the user's account is active or has expired.
*
* @param realm organization DN
* @return true if user is active and account is not expired.
*/
boolean active = false;
try {
if (!isUserActive ||
} else if (isAccountExpired(user)) {
} else {
active = true;
}
} catch (SSOException e) {
errorMsg = getErrorString(e);
} catch (IdRepoException e) {
errorMsg = getErrorString(e);
}
return active;
}
/**
* Gets user attribute value for a given user object and attribute name.
* It will set attribute value to a default value if the value is null.
*
* @param user <code>AMIdentity</code> object
* @param attrName attribute name
* @param defaultValue default value for a attribute
* @return attribute value
* @throws SSOExcepion
* @throws AMException
*/
private String getUserAttributeValue(
) throws SSOException, IdRepoException {
}
private boolean isAccountExpired(
throws SSOException, IdRepoException {
boolean expired = false;
}
}
return expired;
}
throws SSOException, IdRepoException {
return getFirstElement(set);
}
/**
* Returns realm name. If the given realm name is null or blank.
* then root realm will be returned.
*
* @param realm Realm name.
* @return Realm Name
* @throws PWResetException if unable to get realm or realm does not exists
*/
try {
if (debug.messageEnabled()) {
}
} catch (Exception e) {
errorMsg = getErrorString(e);
throw new PWResetException(errorMsg);
}
} else {
realm = "/";
}
return orgName;
}
/**
* Sets the valid realm flag.
*
* @param realm Realm Name.
*/
validRealm = true;
}
/**
* Realm for the user resetting password.
*
* @return the realm for the user resetting password.
*/
public String getUserRealm() {
return userRealm;
}
/**
* Returns <code>true</code> if the entered user attr value
* is comprised of safe characters. It will return false
* and view bean will display an error message if it
* contains invalid characters
*
* @param orgDN organization DN.
* @param userAttrValue User enter data for user validation.
* @return <code>true</code> if entered data is valid.
*/
boolean isValid = false;
try {
} catch (SSOException e) {
errorMsg = getErrorString(e);
} catch (SMSException e) {
errorMsg = getErrorString(e);
}
// assume all characters are allowed when regex expression is not defined
return true;
}
if (debug.messageEnabled()) {
}
try {
if (found) {
} else {
isValid = true;
}
} catch (PatternSyntaxException pse) {
}
return isValid;
}
}