org.picketlink.idm.credential.internal

Class PasswordCredentialHandler<S extends org.picketlink.idm.spi.CredentialStore<?>,V extends org.picketlink.idm.credential.UsernamePasswordCredentials,U extends org.picketlink.idm.credential.Password>

java.lang.Object

org.picketlink.idm.credential.internal.PasswordCredentialHandler<S,V,U>

All Implemented Interfaces:

org.picketlink.idm.credential.spi.CredentialHandler<S,V,U>

Direct Known Subclasses:

TOTPCredentialHandler

@SupportsCredentials(value={org.picketlink.idm.credential.UsernamePasswordCredentials.class,org.picketlink.idm.credential.Password.class})
public class PasswordCredentialHandler<S extends org.picketlink.idm.spi.CredentialStore<?>,V extends org.picketlink.idm.credential.UsernamePasswordCredentials,U extends org.picketlink.idm.credential.Password>
extends Object
implements org.picketlink.idm.credential.spi.CredentialHandler<S,V,U>

This particular implementation supports the validation of UsernamePasswordCredentials, and updating Password credentials.

How passwords are encoded can be changed by specifying a configuration option using the PASSWORD_ENCODER. By default a SHA-512 encoding is performed.

Password are always salted before encoding.

Author:

Shane Bryzak, Pedro Silva

Field Summary

Fields

Modifier and Type	Field and Description
static String	PASSWORD_ENCODER Stores a stateless instance of PasswordEncoder that should be used to encode passwords.

Constructor Summary

Constructors

Constructor and Description
PasswordCredentialHandler()

Method Summary

Methods

Modifier and Type	Method and Description
void	setup(S store)
void	update(org.picketlink.idm.spi.SecurityContext context, org.picketlink.idm.model.Agent agent, U password, S store, Date effectiveDate, Date expiryDate)
void	validate(org.picketlink.idm.spi.SecurityContext context, V credentials, S store)

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Field Detail

PASSWORD_ENCODER

public static final String PASSWORD_ENCODER

Stores a stateless instance of PasswordEncoder that should be used to encode passwords.

See Also:

Constant Field Values

Constructor Detail

PasswordCredentialHandler

public PasswordCredentialHandler()

Method Detail

setup

public void setup(S store)

Specified by:

setup in interface org.picketlink.idm.credential.spi.CredentialHandler<S extends org.picketlink.idm.spi.CredentialStore<?>,V extends org.picketlink.idm.credential.UsernamePasswordCredentials,U extends org.picketlink.idm.credential.Password>

validate

public void validate(org.picketlink.idm.spi.SecurityContext context,
            V credentials,
            S store)

Specified by:

validate in interface org.picketlink.idm.credential.spi.CredentialHandler<S extends org.picketlink.idm.spi.CredentialStore<?>,V extends org.picketlink.idm.credential.UsernamePasswordCredentials,U extends org.picketlink.idm.credential.Password>

update

public void update(org.picketlink.idm.spi.SecurityContext context,
          org.picketlink.idm.model.Agent agent,
          U password,
          S store,
          Date effectiveDate,
          Date expiryDate)

Specified by:

update in interface org.picketlink.idm.credential.spi.CredentialHandler<S extends org.picketlink.idm.spi.CredentialStore<?>,V extends org.picketlink.idm.credential.UsernamePasswordCredentials,U extends org.picketlink.idm.credential.Password>