Examples of org.geoserver.security.password.PasswordValidator

• org.geoserver.security.password.PasswordValidator
  Validates a password based on {@link PasswordPolicyConfig} objectAt a bare minimum, null passwords should not be allowed. Additionally, password must not start with prefixes used by the {@link GeoServerPasswordEncoder} objectsTo get the prefixes use for (GeoserverPasswordEncoder enc : GeoServerExtensions.extensions( GeoserverPasswordEncoder.class)) { System.out.println(enc.getPrefix()+GeoserverPasswordEncoder.PREFIX_DELIMTER); } A concrete example can be found in {@link PasswordValidatorImpl#PasswordValidatorImpl()} @author christian

               //no such config
               return null;
           }

           //look up the validator for this config
           PasswordValidator validator = null;

           for (GeoServerSecurityProvider p  : lookupSecurityProviders()) {
               if (p.getPasswordValidatorClass() == null) {
                   continue;
               }
               if (p.getPasswordValidatorClass().getName().equals(config.getClassName())) {
                   validator = p.createPasswordValidator(config, GeoServerSecurityManager.this);
                   break;
               }
           }
           if (validator == null) {
               throw new IOException("No password policy matching config: " + config);
           }

           validator.setConfig(config);
           return validator;
       }

     *
     * @param name The name of the password policy configuration.
     */
    public PasswordValidator loadPasswordValidator(String name)
            throws IOException {
        PasswordValidator validator = passwordValidators.get(name);
        if (validator == null) {
            synchronized (this) {
                validator = passwordValidators.get(name);
                if (validator == null) {
                    validator = passwordValidatorHelper.load(name);

        keyStoreProvider.reloadKeyStore();
        keyStoreProvider.setUserGroupKey(
            XMLUserGroupService.DEFAULT_NAME, randomPasswdProvider.getRandomPassword(32));
        keyStoreProvider.storeKeyStore();

        PasswordValidator validator =
                loadPasswordValidator(PasswordValidator.DEFAULT_NAME);
        if (validator==null) {
            // Policy allows any password except null, this is the default
            // at before migration
            PasswordPolicyConfig pwpconfig = new PasswordPolicyConfig();

        expect(masterPasswdProvider.getName()).andReturn(MasterPasswordProvider.DEFAULT_NAME).anyTimes();
        expect(secMgr.listMasterPasswordProviders()).andReturn(
            new TreeSet<String>(Arrays.asList(MasterPasswordProvider.DEFAULT_NAME))).anyTimes();

        //password validators
        PasswordValidator passwdValidator = createNiceMock(PasswordValidator.class);
        expect(secMgr.loadPasswordValidator(PasswordValidator.DEFAULT_NAME))
            .andReturn(passwdValidator).anyTimes();

        PasswordPolicyConfig masterPasswdPolicyConfig = createNiceMock(PasswordPolicyConfig.class);
        expect(masterPasswdPolicyConfig.getMinLength()).andReturn(8).anyTimes();

    protected MasterPasswordChangeException createSecurityException (String errorid, Object ...args) {
        return new MasterPasswordChangeException(errorid,args);
    }

    protected  void validatePasswordAgainstPolicy(char[] password) throws PasswordPolicyException{
       PasswordValidator val=null;
       try {
           val = manager.loadPasswordValidator(PasswordValidatorImpl.MASTERPASSWORD_NAME);
           val.validatePassword(password);
       } catch (IOException e) {
        throw new RuntimeException(e);
       }