Uploaded image for project: 'Sakai'
  1. Sakai
  2. SAK-24398

Add configuration for validation tokens to expire in minutes rather than days

    Details

    • 10 status:
      Resolved
    • Property addition/change required:
      Yes
    • Previous Issue Keys:
      RES-55

      Description

      The accountValidator.maxDays sakai property is not granular enough for some instances. This patch adds accountValidator.maxPasswordResetMinutes=[Integer]. If this property is not set, there is no change. Otherwise when the user clicks on their validation link, we check if the time that their validation token was sent is within the specified threshold - if not we expire their validation token. The same check happens when the user submits the validation form.

        Gliffy Diagrams

          Attachments

            Issue Links

              Activity

                People

                • Assignee:
                  bjones86 Brian Jones
                  Reporter:
                  bbailla2 Brian Baillargeon
                • Votes:
                  0 Vote for this issue
                  Watchers:
                  9 Start watching this issue

                  Dates

                  • Created:
                    Updated:
                    Resolved:

                    Git Source Code