[ http://jira.codehaus.org/browse/CONTINUUM-794?page=comments#action_73335 ] Carlos Sanchez commented on CONTINUUM-794: ------------------------------------------
we need to store only the date created. - Number of days valid is a configuration option, for now it can just be injected ffrom the xml config file, and will be shared for all users. Being number of days it must be of type int. You store the date as Date, no need to use a calendar, convert the days to milliseconds and you now if it's expired or not. - in ContinuumUserDetailsService.loadUserByUsername you can check if date created + expiration days < current date and if true set accountNotExpired to false in the returned UserDetails > Password expiration > ------------------- > > Key: CONTINUUM-794 > URL: http://jira.codehaus.org/browse/CONTINUUM-794 > Project: Continuum > Issue Type: Sub-task > Reporter: Carlos Sanchez > Assigned To: Lester Ecarma > > In the acegi user details service, every time a user authenticates check for > date of password creation, if more than defined time set expired=true in the > database and return the user with expired=true too > I think Acegi will redirect to he page for change password, need to > investigate. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira