Class Overview
An LdapAuthenticator
which compares the login
password with the value stored in the directory using a remote LDAP "compare" operation.
If passwords are stored in digest form in the repository, then a suitable PasswordEncoder
implementation must be supplied. By default, passwords are encoded using the LdapShaPasswordEncoder
.
Note that compare operations will not work if salted-SHA (SSHA) passwords are used, as it is not possible to
know the salt value which is a random byte sequence generated by the directory.
Public Constructors
public
PasswordComparisonAuthenticator
(BaseLdapPathContextSource contextSource)
Public Methods
public
DirContextOperations
authenticate
(Authentication authentication)
public
void
setPasswordAttributeName
(String passwordAttribute)