|
|
@@ -264,16 +264,6 @@ public class DaoAuthenticationProvider implements AuthenticationProvider,
|
|
|
throw new LockedException("User account is locked");
|
|
|
}
|
|
|
|
|
|
- if (!user.isCredentialsNonExpired()) {
|
|
|
- if (this.context != null) {
|
|
|
- context.publishEvent(new AuthenticationFailureCredentialsExpiredEvent(
|
|
|
- authentication, user));
|
|
|
- }
|
|
|
-
|
|
|
- throw new CredentialsExpiredException(
|
|
|
- "User credentials have expired");
|
|
|
- }
|
|
|
-
|
|
|
if (!isPasswordCorrect(authentication, user)) {
|
|
|
// Password incorrect, so ensure we're using most current password
|
|
|
if (cacheWasUsed) {
|
|
|
@@ -291,6 +281,16 @@ public class DaoAuthenticationProvider implements AuthenticationProvider,
|
|
|
}
|
|
|
}
|
|
|
|
|
|
+ if (!user.isCredentialsNonExpired()) {
|
|
|
+ if (this.context != null) {
|
|
|
+ context.publishEvent(new AuthenticationFailureCredentialsExpiredEvent(
|
|
|
+ authentication, user));
|
|
|
+ }
|
|
|
+
|
|
|
+ throw new CredentialsExpiredException(
|
|
|
+ "User credentials have expired");
|
|
|
+ }
|
|
|
+
|
|
|
if (!cacheWasUsed) {
|
|
|
// Put into cache
|
|
|
this.userCache.putUserInCache(user);
|
Luke Taylor