/**
* This method is used to validate the security answers and on on successful validation, it resets
* the password and sends a mail to the user with the generated password.
*
* @param callbacks
* @return
* @throws Exception
*/
private int validateAnswers(Callback[] callbacks) throws Exception {
for (Callback callback_ : callbacks) {
if (callback_ instanceof NameCallback) {
NameCallback callback = (NameCallback) callback_;
if (StringUtils.isEmpty(callback.getName())) {
replaceHeader(MODULE_VALIDATE_ANSWERS, getLocalizedString("missingAnswer.message"));
return MODULE_VALIDATE_ANSWERS;
}
}
}
Map<String, String> qaMap = (Map<String, String>) sharedState.get("QAMap");
for (Callback callback_ : callbacks) {
if (callback_ instanceof NameCallback) {
NameCallback callback = (NameCallback) callback_;
if (!qaMap.get(callback.getPrompt()).equals(callback.getName().trim())) {
resetLockout.invalidAnswer(user);
debug.error("Invalid password reset answers provided for " + user.getUniversalId());
int warningCount = resetLockout.getWarnUserCount(user.getUniversalId());
if (warningCount < 0) {
replaceHeader(
MODULE_SUCCESS_MSG,
"<font color=\"red\">" + getLocalizedString("lockoutMsg.message") + "</font>");
return MODULE_SUCCESS_MSG;
} else if (warningCount > 0) {
replaceHeader(
MODULE_VALIDATE_ANSWERS,
MessageFormat.format(
getLocalizedString("lockoutWarning.message"), new Object[] {warningCount}));
return MODULE_VALIDATE_ANSWERS;
} else {
replaceHeader(MODULE_VALIDATE_ANSWERS, getLocalizedString("wrongAnswer.message"));
return MODULE_VALIDATE_ANSWERS;
}
}
}
}
resetLockout.removeUserLockoutEntry(user.getUniversalId());
String resetPassword = new RandomPasswordGenerator().generatePassword(user);
// ensure the random generated password meets the password criteria
while (!isValidPWD(resetPassword))
resetPassword = new RandomPasswordGenerator().generatePassword(user);
Map<String, Set> attrMap = new HashMap<String, Set>();
Set<String> attribVals = new HashSet<String>();
attribVals.add(resetPassword);
attrMap.put(
CommonUtilities.getProperty(PassphraseConstants.USER_PASSWORD_ATTRIBUTE), attribVals);
// Enable the force password reset flag
Set<String> passwordResetFlag = new HashSet<String>();
passwordResetFlag.add("true");
attrMap.put(
CommonUtilities.getProperty(PassphraseConstants.USER_PASSWORD_RESET_FLAG_ATTRIBUTE),
passwordResetFlag);
user.setAttributes(attrMap);
user.store();
debug.message("Password has been reset for the user: "******"emailNotify.message"));
} catch (Exception e) {
debug.error("Error sending password reset mail:", e);
replaceHeader(MODULE_SUCCESS_MSG, getLocalizedString("sendEmailFailed.message"));
}
return MODULE_SUCCESS_MSG;
}
