Retrive password

Submitted by vidya.muniyappa on Mon, 06/08/2015 - 12:46
1
0
-1

i want t retrive password for the logged user .. pls help me to get it .. as getPassword() user.password both are depricated

2 answers

Submitted by Sean McP on Tue, 06/09/2015 - 07:13
1
0
-1

Well it doesn't tell you how to save the password, but it shows you how to get the password.

the full post is here, http://community.bonitasoft.com/answers/ldap-auth-bonita-bpm-community#node-24997

The lines you're probably looking for are:

final String password = String.valueOf(credentials.get(AuthenticationConstants.BASIC_PASSWORD));
final String userName = String.valueOf(credentials.get(AuthenticationConstants.BASIC_USERNAME));

Again though, I would recommend doing authentication, getting the token and then use the token, not saved in a variable uid and password for security reasons.

Anyway hope you succeed, regards

Comments

Submitted by vidya.muniyappa on Tue, 06/09/2015 - 07:18

yes trying to do the same ... using token's thanku soo much

Permalink
Submitted by subratkumar.behera on Wed, 06/24/2015 - 08:17

Hi Sean , As the getPassword api is deprecated , Is there any alternative for this api ?

Permalink
Submitted by Sean McP on Wed, 06/24/2015 - 15:26

@subratkumar

The code above doesn't use the getPassword api, so it should work without issue for now or into the future...

regards

Permalink

Submitted by Sean McP on Mon, 06/08/2015 - 13:52
1
0
-1

Hi Vidya,

i suspect this is for security, there should be no way of retrieving an password.

You should create your own, administrative, Process for resetting a password. But definitely not retrieving.

I must admit I would have thought there would be an inbuilt "I've forgotten my password" link on the login screen but there isn't.

In this case I would have an external HTML application do a REST call to your own service process that sends an email to the registered user like many web sites do,

regards Seán

Comments

Submitted by vidya.muniyappa on Mon, 06/08/2015 - 14:11

Hi Seán ,

Based on the user login credentials i'm generating an SCLAR API .. so i need to capture user credentials .. autorization for few folder need to be inculded soo i need to capture user id and password

Permalink
Submitted by Sean McP on Mon, 06/08/2015 - 14:34

Yes I see.

I think in this case you should have a look at rewriting the Login Program to save the password (though not recommended) and use it that way. There was a recent LDAP post that showed how to do this.

Personnally if the other system uses LDAP for security authentication I would do the LDAP in Community and then use the token only to validate credentials.

I know the ID and Password method are easier, but they are not very secure at all and not recommended.

regards

Permalink
Submitted by vidya.muniyappa on Tue, 06/09/2015 - 06:50

can you please give me the link where they have shown to save password .. ??

Permalink
Notifications