: UserPolicy can be set for each userType.
...
| Code Block |
|---|
(설명) admin 사용자에 대하여 - 중복로그인을 허용하지 않고 - 비밀번호 실패 횟수 5회 설정 - 비밀번호 변경 주기 3개월 - 미접속가능기간 1년 - 비밀번호 실패횟수 또는 미접속 가능 기간이 도래한 경우 사용자 계정 잠금 처리 {{protocol}}://{{hostname}}:{{port}}/node/userPolicy/1871395741 { "result": "200", "resultMessage": "SUCCESS", "item": { "id": "1871395741", "label": "admin", "userType": { "value": "admin", "label": "Admin" }, "site": null, "allowedLoginDuplication": false, "allowedLoginFailCount": 5, "passwordChangeCycle": { "value": "P3M", "label": "3개월" }, "passwordChangeExtendPeriod": null, "unconnectablePeriod": { "value": "P1Y", "label": "1년" }, "enableUserLock": [ { "value": "allowedLoginFailCount", "label": "허용 된 로그인 실패 횟수" }, { "value": "unconnectablePeriod", "label": "미접속 가능 기간" } ] } } |
SessionProcess
SessionProcess can define signIn, signUp, withdraw, and initPassword for each user type.
You can customize the SessionProcess for each project.
Create a class that inherits the SessionProcess interface.
Path : net/ion/ice/core/session/process/SessionProcess.java
Naming convention : sessionProcessProjectId
If you don't create a project's SessionProcess, the default is used.
SessionProcessDefault.java
SessionService.java
| Code Block | ||
|---|---|---|
| ||
@PostConstruct
public void init() {
this.project = configuration.getProject();
sessionCloser = new SessionCloser(sessionTimeoutConfiguration,
clusterService,
this);
sessionCloser.setDaemon(true);
sessionCloser.start();
try {
sessionProcess = (SessionProcess) ApplicationContextManager.getBean("sessionProcess" + WordUtils.capitalize(project));
} catch (NoSuchBeanDefinitionException e) {
logger.error(e.getMessage());
sessionProcess = (SessionProcess) ApplicationContextManager.getBean("sessionProcessDefault");
}
} |
SessionProcessDefault.java
| Code Block | ||
|---|---|---|
| ||
public class SessionProcessDefault implements SessionProcess {
static Logger logger = LoggerFactory.getLogger(SessionProcess.class);
protected final SessionService sessionService;
public SessionProcessDefault(SessionService sessionService) {
this.sessionService = sessionService;
}
@Override
public Map<String, Object> signInAdmin(String id, String password, Map<String, Object> session, HttpServletRequest request) {
Map<String, Object> result = new HashMap<>(session);
UserAccount account = new UserAccount(id, getAdmin(id));
account.validate(request, session, "adm", "admin", id, password);
session.putAll(SessionUtils.getSessionService().initAdminSession(id, account.getUser()));
result.put("user", account.getUser());
result.put("result", "200");
result.put("resultMessage", "SUCCESS");
return result;
}
...
} |
UserAccount.java
| Code Block | ||
|---|---|---|
| ||
public UserAccount(String id, Node user) {
if (StringUtils.isEmpty(id) || user == null) {
throw new ApiException(ApiResCode.NotFoundUser);
}
this.user = user;
this.userPolicy = new UserPolicy(user);
} |
UserPolicy.java
| Code Block | ||
|---|---|---|
| ||
public UserPolicy(Node node) {
this.user = node;
if (StringUtils.equals(node.getTypeId(), "customer")) {
List<Node> list = NodeUtils.getNodeList(USERPOLICY, "userType_matching=customer&site_matching=" + node.getStringValue("site"));
if (list.size() == 0) {
this.userPolicy = null;
} else {
this.userPolicy = list.get(0);
}
} else {
this.userPolicy = ((List<Node>) NodeQuery.build(USERPOLICY).matching("userType", node.getTypeId()).getList()).stream().findFirst().orElse(null);
}
} |
[BO] Platform Console > Account/Authority > User Policy Setting
...