...
Perform a GET on the token path using an existing authentication token or using HTTP basic authentication to validate the request in order to list active authentication tokens.
...
Perform a DELETE on the full token path and authenticate the request with a token or with HTTP basic authentication in order to logout and remove an authentication token.
...
Standardize an attribute within one of the schemas that apply to the user record for which enabled user accounts always have set to a known value.
Design a test for the value.
| Info |
|---|
...
Tip Although |
...
negative test can be used to find disabled accounts, there is less risk of mistakes with the affirmative method |
...
: attribute is value |
...
. |
Use the pwdPolicy schema with the pwdLockout attribute and use the userFilter to require the pwdLockout attribute to be true.
Token Examples
The token administrator defined in the root IDSYS configuration file is allowed to use the x-owner-meta argument in order to perform token listing for any user. Administrators wishing to disable a user account and log them out of the system can do so by locking the LDAP account and then removing any existing authentication tokens for the user.
...