password expiration

**abellmann** · Sep 20th, 2004, 11:19 AM

Hello,

I am evaluating Acegi to use it as an authorization / authentication system for an SAP backend.

I haven't seen any way to implement a password expiration with acegi (part of the standard sap logon procedure)

The process would have to be as follows:

- user requests login with username/password
- login is correct, but password is expired
- user sees message, that password has expired on change-password screen(!) and can enter his old and new password
- the user is forwarded to the requested page.

Is there any way to implement this with Acegi as it is? Or will this be implemented in future versions of Acegi (when?), since this seems to be a common scenario?

Best regards,
Andreas

**kajism** · Sep 22nd, 2004, 08:40 AM

Hi,

You can check for expired password on the defaultTargetUrl page of authenticationProcessingFilter . This page can than redirect the user to the change password page if password is expired.

Karel

Thread: password expiration

Thread Tools

Display

password expiration

Similar Threads

Forgot password (e.g. secret question) using Acegi

Change Password interim step

Binding a password and confirmPassword field

Salt, based on password

Password Expiration

Posting Permissions