Password reset-related attributes
The next table shows attributes related to password resets. They are relevant for the LDAP Password Self-Service Token Persister plugin.
Attribute name (examples) | Usage | Type | LDAP Connector plugin | LDAP -Token List Persister plugin | LDAP Password Self-Service Token Persister plugin |
|---|---|---|---|---|---|
| The attribute holding the token ID. The token is used in the self-service process as additional authentication mean. | String | R | ||
| The date and time when the token was issued. May be empty. | Timestamp | R | ||
| Flag telling whether the token has been used (“consumed”). | Binary | R | ||
| The date and time when the token has been consumed. May be empty. | Timestamp | R | ||
| Counts the failed attempts to use the token. May be used to mitigate brute force attacks. | Integer | O | ||
| Defines whether the token is valid or not. Invalid tokens cannot be used. | Boolean | O |
- R = Required by plugin
- O = Optional, may be used by plugin