
<div dir="ltr">Thanks Gustav, I put the notifier in as you described and it appears to have saved OK. <div>Now that the notifier is there how can I allow users to actually reset passwords via email? Is there a URL I can give them to visit?</div><div><br></div><div>Thanks again,</div><div>Peter<br><div><div class="gmail_extra"><br><div class="gmail_quote">On Mon, Mar 6, 2017 at 4:35 PM,  <span dir="ltr"><<a href="mailto:midpoint-request@lists.evolveum.com" target="_blank">midpoint-request@lists.evolveum.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Send midPoint mailing list submissions to<br>

        <a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a><br>

<br>

To subscribe or unsubscribe via the World Wide Web, visit<br>

        <a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>mailman/listinfo/midpoint</a><br>

or, via email, send a message with subject or body 'help' to<br>

        <a href="mailto:midpoint-request@lists.evolveum.com">midpoint-request@lists.<wbr>evolveum.com</a><br>

<br>

You can reach the person managing the list at<br>

        <a href="mailto:midpoint-owner@lists.evolveum.com">midpoint-owner@lists.evolveum.<wbr>com</a><br>

<br>

When replying, please edit your Subject line so it is more specific<br>

than "Re: Contents of midPoint digest..."<br>

<br>

<br>

Today's Topics:<br>

<br>

   1. Re: Password Reset Email Notifier Configuration (Pálos Gustáv)<br>

<br>

<br>

------------------------------<wbr>------------------------------<wbr>----------<br>

<br>

Message: 1<br>

Date: Mon, 6 Mar 2017 22:35:10 +0100<br>

From: Pálos Gustáv <<a href="mailto:gustav.palos@evolveum.com">gustav.palos@evolveum.com</a>><br>

To: midPoint General Discussion <<a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a>><br>

Subject: Re: [midPoint] Password Reset Email Notifier Configuration<br>

Message-ID:<br>

        <<a href="mailto:CAPXQVkeypuuT6rbU-G7X57GWGXJAD%2BviqN7AC9F-SkqV0hoLXA@mail.gmail.com">CAPXQVkeypuuT6rbU-<wbr>G7X57GWGXJAD+viqN7AC9F-<wbr>SkqV0hoLXA@mail.gmail.com</a>><br>

Content-Type: text/plain; charset="utf-8"<br>

<br>

you need not to import, but edit configuration --> repository objects --><br>

system configuration --><br>

find section <notificationConfiguration> and put here:<br>

  <handler><br>

         <simpleUserNotifier><br>

  .....<br>

         </simpleUserNotifier><br>

  </handler><br>

<br>

and please also read & use this:<br>

<a href="https://wiki.evolveum.com/display/midPoint/Configuring+notifications" rel="noreferrer" target="_blank">https://wiki.evolveum.com/<wbr>display/midPoint/Configuring+<wbr>notifications</a><br>

<br>

You can start with redirecting e-mail to file over redirectToFile<br>

<br>

best regards,<br>

<br>

Gustav<br>

<br>

2017-03-06 22:29 GMT+01:00 Peter Healy <<a href="mailto:phealy3330@gmail.com">phealy3330@gmail.com</a>>:<br>

<br>

> Hi Gustav,<br>

> I have<br>

> Version 3.5<br>

> Git describe git-v3.5<br>

> Build at Wed, 21 Dec 2016 14:01:34 +0000<br>

><br>

> I copied and pasted verbatim from the wiki page into the embedded editor<br>

> or the Import Object GUI page, I don't get any output from idm.log but I do<br>

> get this in catalina.out:<br>

> ==> catalina.out <==<br>

> java.lang.ClassCastException<br>

><br>

> And the error in the GUI has changed to "Object validation failed (no<br>

> reason given)"<br>

><br>

> On Mon, Mar 6, 2017 at 3:31 PM, <<a href="mailto:midpoint-request@lists.evolveum.com">midpoint-request@lists.<wbr>evolveum.com</a>><br>

> wrote:<br>

><br>

>> Send midPoint mailing list submissions to<br>

>>         <a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a><br>

>><br>

>> To subscribe or unsubscribe via the World Wide Web, visit<br>

>>         <a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>mailman/listinfo/midpoint</a><br>

>> or, via email, send a message with subject or body 'help' to<br>

>>         <a href="mailto:midpoint-request@lists.evolveum.com">midpoint-request@lists.<wbr>evolveum.com</a><br>

>><br>

>> You can reach the person managing the list at<br>

>>         <a href="mailto:midpoint-owner@lists.evolveum.com">midpoint-owner@lists.evolveum.<wbr>com</a><br>

>><br>

>> When replying, please edit your Subject line so it is more specific<br>

>> than "Re: Contents of midPoint digest..."<br>

>><br>

>><br>

>> Today's Topics:<br>

>><br>

>>    1. JMS based workflow configuration (Prabhakara Rao Doddapaneni)<br>

>>    2. Password Reset Email Notifier Configuration (Peter Healy)<br>

>>    3. Re: Password Reset Email Notifier Configuration (Pálos Gustáv)<br>

>><br>

>><br>

>> ------------------------------<wbr>------------------------------<wbr>----------<br>

>><br>

>> Message: 1<br>

>> Date: Mon, 6 Mar 2017 19:30:26 +0000 (UTC)<br>

>> From: Prabhakara Rao Doddapaneni <<a href="mailto:dp_rao@yahoo.com">dp_rao@yahoo.com</a>><br>

>> To: "<a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a>" <<a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a>><br>

>> Subject: [midPoint] JMS based workflow configuration<br>

>> Message-ID: <<a href="mailto:1001644321.2237664.1488828626312@mail.yahoo.com">1001644321.2237664.<wbr>1488828626312@mail.yahoo.com</a>><br>

>> Content-Type: text/plain; charset="utf-8"<br>

>><br>

>> One of my resources cannot be configured to respond to sync poll.  I plan<br>

>> to send a message in JMS Q so that midpoint can listen to that message and<br>

>> reconcile/add the user into repository.  What is the ideal solution to<br>

>> achieve this?  has anybody come across this situation?<br>

>> Thanks,Prabhakar.<br>

>> -------------- next part --------------<br>

>> An HTML attachment was scrubbed...<br>

>> URL: <<a href="http://lists.evolveum.com/pipermail/midpoint/attachments/" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>pipermail/midpoint/<wbr>attachments/</a><br>

>> 20170306/a715dd11/attachment-<wbr>0001.html><br>

>><br>

>> ------------------------------<br>

>><br>

>> Message: 2<br>

>> Date: Mon, 6 Mar 2017 15:24:27 -0500<br>

>> From: Peter Healy <<a href="mailto:phealy3330@gmail.com">phealy3330@gmail.com</a>><br>

>> To: <a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a><br>

>> Subject: [midPoint] Password Reset Email Notifier Configuration<br>

>> Message-ID:<br>

>>         <CADnbc=wtq+Suhc6LUG-<wbr>r04OppN4AQshDzgk5wGNf7MScsvzbT<wbr>Q@mail.<br>

>> <a href="http://gmail.com" rel="noreferrer" target="_blank">gmail.com</a>><br>

>> Content-Type: text/plain; charset="utf-8"<br>

>><br>

>><br>

>> I am trying to implement:<br>

>> <a href="https://wiki.evolveum.com/display/midPoint/Reset+Password+Configuration" rel="noreferrer" target="_blank">https://wiki.evolveum.com/<wbr>display/midPoint/Reset+<wbr>Password+Configuration</a><br>

>><br>

>> But I get an error importing the Simple User Notifier XML object that is<br>

>> in<br>

>> the wiki page:<br>

>><br>

>> com.evolveum.midpoint.prism.<wbr>PrismProperty cannot be cast to<br>

>> com.evolveum.midpoint.prism.<wbr>PrismObject<br>

>><br>

>><br>

>> I created and successfully imported this Mail Nonce Policy:<br>

>> <valuePolicy xmlns="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/common/common-3</a>"<br>

>>              xmlns:q="<a href="http://prism.evolveum.com/xml/ns/public/query-3" rel="noreferrer" target="_blank">http://prism.<wbr>evolveum.com/xml/ns/public/<wbr>query-3</a>"<br>

>>              xmlns:c="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/common/common-3</a>"<br>

>>              xmlns:t="<a href="http://prism.evolveum.com/xml/ns/public/types-3" rel="noreferrer" target="_blank">http://prism.<wbr>evolveum.com/xml/ns/public/<wbr>types-3</a>"<br>

>>              xmlns:icfs="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/r" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/connector/icf-1/<wbr>r</a><br>

>> esource-schema-3<br>

>> "<br>

>>              xmlns:ri="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/resource/<wbr>instance-3</a>"<br>

>>              oid="c0c8a80d-1818-42d1-b3ad-<wbr>e7f8993593a0"<br>

>>              version="0"><br>

>>    <name>Mail Nonce Policy</name><br>

>>    <description>Mail Nonce Policy</description><br>

>>    <metadata><br>

>>       <createTimestamp>2017-03-<wbr>06T19:56:44.233Z</<wbr>createTimestamp><br>

>>       <creatorRef oid="00000000-0000-0000-0000-<wbr>000000000002"<br>

>> type="c:UserType"><!-- administrator --></creatorRef><br>

>>       <createChannel><br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/model/channels-3#objectImport" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/model/channels-<wbr>3#objectImport</a><br>

>> </createChannel><br>

>>    </metadata><br>

>>    <lifetime><br>

>>       <expiration>999</expiration><br>

>>       <warnBeforeExpiration>9</<wbr>warnBeforeExpiration><br>

>>       <lockAfterExpiration>0</<wbr>lockAfterExpiration><br>

>>       <minPasswordAge>0</<wbr>minPasswordAge><br>

>>       <passwordHistoryLength>0</<wbr>passwordHistoryLength><br>

>>    </lifetime><br>

>>    <stringPolicy><br>

>>       <description>Testing string policy</description><br>

>>       <limitations><br>

>>          <minLength>20</minLength><br>

>>          <maxLength>20</maxLength><br>

>>          <minUniqueChars>3</<wbr>minUniqueChars><br>

>>          <limit><br>

>>             <description>Alphas</<wbr>description><br>

>>             <minOccurs>1</minOccurs><br>

>>             <mustBeFirst>false</<wbr>mustBeFirst><br>

>>             <characterClass><br>

>><br>

>>  <value><wbr>abcdefghijklmnopqrstuvwxyzABCD<wbr>EFGHIJKLMNOPQRSTUVWXYZ</value><br>

>>             </characterClass><br>

>>          </limit><br>

>>          <limit><br>

>>             <description>Numbers</<wbr>description><br>

>>             <minOccurs>1</minOccurs><br>

>>             <mustBeFirst>false</<wbr>mustBeFirst><br>

>>             <characterClass><br>

>>                <value>1234567890</value><br>

>>             </characterClass><br>

>>          </limit><br>

>>       </limitations><br>

>>    </stringPolicy><br>

>> </valuePolicy><br>

>><br>

>> And I successfully imported this security policy for the Mail reset:<br>

>> <securityPolicy xmlns="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/common/common-3</a>"<br>

>>                 xmlns:q="<a href="http://prism.evolveum.com/xml/ns/public/query-3" rel="noreferrer" target="_blank">http://prism.<wbr>evolveum.com/xml/ns/public/<wbr>query-3</a>"<br>

>>                 xmlns:c="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/common/common-3" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/common/common-3</a>"<br>

>>                 xmlns:t="<a href="http://prism.evolveum.com/xml/ns/public/types-3" rel="noreferrer" target="_blank">http://prism.<wbr>evolveum.com/xml/ns/public/<wbr>types-3</a>"<br>

>>                 xmlns:icfs="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/connector/icf-1/r" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/connector/icf-1/<wbr>r</a><br>

>> esource-schema-3<br>

>> "<br>

>>                 xmlns:ri="<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/resource/instance-3" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/resource/<wbr>instance-3</a>"<br>

>>                 oid="28bf845a-b107-11e3-85bc-<wbr>001e8c717e5b"<br>

>>                 version="19"><br>

>>    <name>Mail Reset Security Policy</name><br>

>>    <metadata><br>

>>       <createTimestamp>2017-02-<wbr>14T17:10:13.860Z</<wbr>createTimestamp><br>

>>       <creatorRef oid="00000000-0000-0000-0000-<wbr>000000000002"<br>

>> type="c:UserType"><!-- administrator --></creatorRef><br>

>>       <createChannel><br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/model/channels-3#objectImport" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/model/channels-<wbr>3#objectImport</a><br>

>> </createChannel><br>

>>    </metadata><br>

>>    <authentication><br>

>>       <mailAuthentication><br>

>>          <name>confirmationLink</name><br>

>>          <displayName>Additional mail authnetication</displayName><br>

>>          <mailNonce>mailNonce</<wbr>mailNonce><br>

>>       </mailAuthentication><br>

>>    </authentication><br>

>>    <credentials><br>

>>       <nonce><br>

>>          <maxAge>PT2M</maxAge><br>

>>          <name>mailNonce</name><br>

>>          <valuePolicyRef oid="c0c8a80d-1818-42d1-b3ad-<wbr>e7f8993593a0"<br>

>> type="c:ValuePolicyType"><!-- Mail Nonce Policy --></valuePolicyRef><br>

>>       </nonce><br>

>>    </credentials><br>

>>    <credentialsReset><br>

>>       <mailReset><br>

>>          <name>Reset password using mail</name><br>

>><br>

>>  <additionalAuthenticationName><wbr>confirmationLink</<wbr>additionalAut<br>

>> henticationName><br>

>>       </mailReset><br>

>>    </credentialsReset><br>

>> </securityPolicy><br>

>><br>

>> This is the Simple User Notifier form the wiki page:<br>

>> <simpleUserNotifier><br>

>>     <expressionFilter><br>

>>         <script><br>

>>             <code><br>

>>                     import<br>

>> com.evolveum.midpoint.<wbr>notifications.api.events.<wbr>ModelEvent<br>

>>                     import<br>

>> com.evolveum.midpoint.xml.ns._<wbr>public.common.common_3.OrgType<br>

>>                     import com.evolveum.midpoint.prism.<wbr>delta.ChangeType<br>

>><br>

>>                    (event instanceof ModelEvent &amp;&amp;<br>

>> event.getChannel().equals("<br>

>> <a href="http://midpoint.evolveum.com/xml/ns/public/gui/channels-3#resetPassword" rel="noreferrer" target="_blank">http://midpoint.evolveum.com/<wbr>xml/ns/public/gui/channels-3#<wbr>resetPassword</a><br>

>> "))<br>

>>             </code><br>

>>         </script><br>

>>     </expressionFilter><br>

>>     <recipientExpression><br>

>>         <script><br>

>>             <code>return requestee.getEmailAddress()</<wbr>code><br>

>>         </script><br>

>>     </recipientExpression><br>

>>     <bodyExpression><br>

>>         <script><br>

>>             <code><br>

>><br>

>>                 import<br>

>> com.evolveum.midpoint.<wbr>notifications.api.events.<wbr>ModelEvent<br>

>>                 modelEvent = (ModelEvent) event<br>

>>                 newUser = modelEvent.getFocusContext().<wbr>getObjectNew();<br>

>>                 userType = newUser.asObjectable();<br>

>><br>

>>                 link = "<br>

>> <a href="http://localhost:8080/midpoint/resetPasswordConfrimation/user/" rel="noreferrer" target="_blank">http://localhost:8080/<wbr>midpoint/<wbr>resetPasswordConfrimation/<wbr>user/</a>" +<br>

>> userType.getName().getOrig() +"/token/" +<br>

>> midpoint.getPlaintext(<wbr>userType.getCredentials().<wbr>getNonce().getValue());<br>

>>                 bodyMessage = "Did you request password reset? If yes,<br>

>> click on the link bellow \n" + link<br>

>><br>

>>                 return bodyMessage;<br>

>>             </code><br>

>>         </script><br>

>>     </bodyExpression><br>

>>     <transport>mail</transport><br>

>> </simpleUserNotifier><br>

>> -------------- next part --------------<br>

>> An HTML attachment was scrubbed...<br>

>> URL: <<a href="http://lists.evolveum.com/pipermail/midpoint/attachments/" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>pipermail/midpoint/<wbr>attachments/</a><br>

>> 20170306/4448fc63/attachment-<wbr>0001.html><br>

>><br>

>> ------------------------------<br>

>><br>

>> Message: 3<br>

>> Date: Mon, 6 Mar 2017 21:31:06 +0100<br>

>> From: Pálos Gustáv <<a href="mailto:gustav.palos@evolveum.com">gustav.palos@evolveum.com</a>><br>

>> To: midPoint General Discussion <<a href="mailto:midpoint@lists.evolveum.com">midpoint@lists.evolveum.com</a>><br>

>> Subject: Re: [midPoint] Password Reset Email Notifier Configuration<br>

>> Message-ID:<br>

>>         <CAPXQVkdrEFOqZxKLZFxNtx-2Z=v=<wbr>=PHTzEnkQhjdXcJXY6Mp=<a href="mailto:g@mail.gm">g@mail.gm</a><br>

>> <a href="http://ail.com" rel="noreferrer" target="_blank">ail.com</a>><br>

>> Content-Type: text/plain; charset="utf-8"<br>

>><br>

>><br>

>> Hi Peter<br>

>><br>

>> I successfully imported Simple User Notifier snippet in midPoint 3.5. What<br>

>> version do you try?<br>

>> This feature is supported only from v3.5.<br>

>><br>

>> If you have same midPoint version, please send more detailed track trace<br>

>> from idm.log<br>

>><br>

>> Best regards,<br>

>><br>

>> Gustav<br>

>><br>

>> 2017-03-06 21:24 GMT+01:00 Peter Healy <<a href="mailto:phealy3330@gmail.com">phealy3330@gmail.com</a>>:<br>

>><br>

>> > I am trying to implement:<br>

>> > <a href="https://wiki.evolveum.com/display/midPoint/Reset+Password+Configuration" rel="noreferrer" target="_blank">https://wiki.evolveum.com/<wbr>display/midPoint/Reset+<wbr>Password+Configuration</a><br>

>> ><br>

>> > But I get an error importing the Simple User Notifier XML object that is<br>

>> > in the wiki page:<br>

>> ><br>

>> > com.evolveum.midpoint.prism.<wbr>PrismProperty cannot be cast to<br>

>> > com.evolveum.midpoint.prism.<wbr>PrismObject<br>

>> ><br>

>> ><br>

>> > I created and successfully imported this Mail Nonce Policy:<br>

>> > <valuePolicy xmlns="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > common/common-3"<br>

>> >              xmlns:q="<a href="http://prism.evolveum.com/xml/ns/public/query-3" rel="noreferrer" target="_blank">http://prism.<wbr>evolveum.com/xml/ns/public/<wbr>query-3</a>"<br>

>> >              xmlns:c="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > common/common-3"<br>

>> >              xmlns:t="<a href="http://prism.evolveum.com/xml/ns/public/types-3" rel="noreferrer" target="_blank">http://prism.<wbr>evolveum.com/xml/ns/public/<wbr>types-3</a>"<br>

>> >              xmlns:icfs="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > connector/icf-1/resource-<wbr>schema-3"<br>

>> >              xmlns:ri="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > resource/instance-3"<br>

>> >              oid="c0c8a80d-1818-42d1-b3ad-<wbr>e7f8993593a0"<br>

>> >              version="0"><br>

>> >    <name>Mail Nonce Policy</name><br>

>> >    <description>Mail Nonce Policy</description><br>

>> >    <metadata><br>

>> >       <createTimestamp>2017-03-<wbr>06T19:56:44.233Z</<wbr>createTimestamp><br>

>> >       <creatorRef oid="00000000-0000-0000-0000-<wbr>000000000002"<br>

>> > type="c:UserType"><!-- administrator --></creatorRef><br>

>> >       <createChannel><a href="http://midpoint.evolveum.com/xml/ns/" rel="noreferrer" target="_blank">http://<wbr>midpoint.evolveum.com/xml/ns/</a><br>

>> > public/model/channels-3#<wbr>objectImport</createChannel><br>

>> >    </metadata><br>

>> >    <lifetime><br>

>> >       <expiration>999</expiration><br>

>> >       <warnBeforeExpiration>9</<wbr>warnBeforeExpiration><br>

>> >       <lockAfterExpiration>0</<wbr>lockAfterExpiration><br>

>> >       <minPasswordAge>0</<wbr>minPasswordAge><br>

>> >       <passwordHistoryLength>0</<wbr>passwordHistoryLength><br>

>> >    </lifetime><br>

>> >    <stringPolicy><br>

>> >       <description>Testing string policy</description><br>

>> >       <limitations><br>

>> >          <minLength>20</minLength><br>

>> >          <maxLength>20</maxLength><br>

>> >          <minUniqueChars>3</<wbr>minUniqueChars><br>

>> >          <limit><br>

>> >             <description>Alphas</<wbr>description><br>

>> >             <minOccurs>1</minOccurs><br>

>> >             <mustBeFirst>false</<wbr>mustBeFirst><br>

>> >             <characterClass><br>

>> >                <value><wbr>abcdefghijklmnopqrstuvwxyzABCD<br>

>> > EFGHIJKLMNOPQRSTUVWXYZ</value><br>

>> >             </characterClass><br>

>> >          </limit><br>

>> >          <limit><br>

>> >             <description>Numbers</<wbr>description><br>

>> >             <minOccurs>1</minOccurs><br>

>> >             <mustBeFirst>false</<wbr>mustBeFirst><br>

>> >             <characterClass><br>

>> >                <value>1234567890</value><br>

>> >             </characterClass><br>

>> >          </limit><br>

>> >       </limitations><br>

>> >    </stringPolicy><br>

>> > </valuePolicy><br>

>> ><br>

>> > And I successfully imported this security policy for the Mail reset:<br>

>> > <securityPolicy xmlns="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > common/common-3"<br>

>> >                 xmlns:q="<a href="http://prism.evolveu" rel="noreferrer" target="_blank">http://prism.evolveu</a><br>

>> <a href="http://m.com/xml/ns/public/query-3" rel="noreferrer" target="_blank">m.com/xml/ns/public/query-3</a>"<br>

>> >                 xmlns:c="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > common/common-3"<br>

>> >                 xmlns:t="<a href="http://prism.evolveu" rel="noreferrer" target="_blank">http://prism.evolveu</a><br>

>> <a href="http://m.com/xml/ns/public/types-3" rel="noreferrer" target="_blank">m.com/xml/ns/public/types-3</a>"<br>

>> >                 xmlns:icfs="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > connector/icf-1/resource-<wbr>schema-3"<br>

>> >                 xmlns:ri="<a href="http://midpoint.evolveum.com/xml/ns/public/" rel="noreferrer" target="_blank">http://midpoint.<wbr>evolveum.com/xml/ns/public/</a><br>

>> > resource/instance-3"<br>

>> >                 oid="28bf845a-b107-11e3-85bc-<wbr>001e8c717e5b"<br>

>> >                 version="19"><br>

>> >    <name>Mail Reset Security Policy</name><br>

>> >    <metadata><br>

>> >       <createTimestamp>2017-02-<wbr>14T17:10:13.860Z</<wbr>createTimestamp><br>

>> >       <creatorRef oid="00000000-0000-0000-0000-<wbr>000000000002"<br>

>> > type="c:UserType"><!-- administrator --></creatorRef><br>

>> >       <createChannel><a href="http://midpoint.evolveum.com/xml/ns/" rel="noreferrer" target="_blank">http://<wbr>midpoint.evolveum.com/xml/ns/</a><br>

>> > public/model/channels-3#<wbr>objectImport</createChannel><br>

>> >    </metadata><br>

>> >    <authentication><br>

>> >       <mailAuthentication><br>

>> >          <name>confirmationLink</name><br>

>> >          <displayName>Additional mail authnetication</displayName><br>

>> >          <mailNonce>mailNonce</<wbr>mailNonce><br>

>> >       </mailAuthentication><br>

>> >    </authentication><br>

>> >    <credentials><br>

>> >       <nonce><br>

>> >          <maxAge>PT2M</maxAge><br>

>> >          <name>mailNonce</name><br>

>> >          <valuePolicyRef oid="c0c8a80d-1818-42d1-b3ad-<wbr>e7f8993593a0"<br>

>> > type="c:ValuePolicyType"><!-- Mail Nonce Policy --></valuePolicyRef><br>

>> >       </nonce><br>

>> >    </credentials><br>

>> >    <credentialsReset><br>

>> >       <mailReset><br>

>> >          <name>Reset password using mail</name><br>

>> >          <additionalAuthenticationName><wbr>confirmationLink</<br>

>> > additionalAuthenticationName><br>

>> >       </mailReset><br>

>> >    </credentialsReset><br>

>> > </securityPolicy><br>

>> ><br>

>> > This is the Simple User Notifier form the wiki page:<br>

>> > <simpleUserNotifier><br>

>> >     <expressionFilter><br>

>> >         <script><br>

>> >             <code><br>

>> >                     import com.evolveum.midpoint.notifica<br>

>> tions.api.events.<br>

>> > ModelEvent<br>

>> >                     import com.evolveum.midpoint.xml.ns._<br>

>> > public.common.common_3.OrgType<br>

>> >                     import com.evolveum.midpoint.prism.<wbr>delta.ChangeType<br>

>> ><br>

>> >                    (event instanceof ModelEvent &amp;&amp;<br>

>> > event.getChannel().equals("<a href="http://midpoint.evolveum.com/xml/" rel="noreferrer" target="_blank">htt<wbr>p://midpoint.evolveum.com/xml/</a><br>

>> > ns/public/gui/channels-3#<wbr>resetPassword"))<br>

>> >             </code><br>

>> >         </script><br>

>> >     </expressionFilter><br>

>> >     <recipientExpression><br>

>> >         <script><br>

>> >             <code>return requestee.getEmailAddress()</<wbr>code><br>

>> >         </script><br>

>> >     </recipientExpression><br>

>> >     <bodyExpression><br>

>> >         <script><br>

>> >             <code><br>

>> ><br>

>> >                 import com.evolveum.midpoint.<wbr>notifications.api.events.<br>

>> > ModelEvent<br>

>> >                 modelEvent = (ModelEvent) event<br>

>> >                 newUser = modelEvent.getFocusContext().<wbr>getObjectNew();<br>

>> >                 userType = newUser.asObjectable();<br>

>> ><br>

>> >                 link = "<a href="http://localhost:8080/midpoint/" rel="noreferrer" target="_blank">http://localhost:8080/<wbr>midpoint/</a><br>

>> > resetPasswordConfrimation/<wbr>user/" + userType.getName().getOrig()<br>

>> > +"/token/" + midpoint.getPlaintext(<wbr>userType.getCredentials().<br>

>> > getNonce().getValue());<br>

>> >                 bodyMessage = "Did you request password reset? If yes,<br>

>> > click on the link bellow \n" + link<br>

>> ><br>

>> >                 return bodyMessage;<br>

>> >             </code><br>

>> >         </script><br>

>> >     </bodyExpression><br>

>> >     <transport>mail</transport><br>

>> > </simpleUserNotifier><br>

>> ><br>

>> > ______________________________<wbr>_________________<br>

>> > midPoint mailing list<br>

>> > <a href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a><br>

>> > <a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>mailman/listinfo/midpoint</a><br>

>> ><br>

>> ><br>

>><br>

>><br>

>> --<br>

>> Gustáv Pálos<br>

>> Identity Engineer<br>

>> <a href="http://evolveum.com" rel="noreferrer" target="_blank">evolveum.com</a><br>

>> -------------- next part --------------<br>

>> An HTML attachment was scrubbed...<br>

>> URL: <<a href="http://lists.evolveum.com/pipermail/midpoint/attachments/" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>pipermail/midpoint/<wbr>attachments/</a><br>

>> 20170306/85ab3d27/attachment.<wbr>html><br>

>><br>

>> ------------------------------<br>

>><br>

>> Subject: Digest Footer<br>

>><br>

>> ______________________________<wbr>_________________<br>

>> midPoint mailing list<br>

>> <a href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a><br>

>> <a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>mailman/listinfo/midpoint</a><br>

>><br>

>><br>

>> ------------------------------<br>

>><br>

>> End of midPoint Digest, Vol 59, Issue 26<br>

>> ******************************<wbr>**********<br>

>><br>

><br>

><br>

> ______________________________<wbr>_________________<br>

> midPoint mailing list<br>

> <a href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a><br>

> <a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>mailman/listinfo/midpoint</a><br>

><br>

><br>

<br>

<br>

--<br>

Gustáv Pálos<br>

Identity Engineer<br>

<a href="http://evolveum.com" rel="noreferrer" target="_blank">evolveum.com</a><br>

-------------- next part --------------<br>

An HTML attachment was scrubbed...<br>

URL: <<a href="http://lists.evolveum.com/pipermail/midpoint/attachments/20170306/3dfbadb0/attachment.html" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>pipermail/midpoint/<wbr>attachments/20170306/3dfbadb0/<wbr>attachment.html</a>><br>

<br>

------------------------------<br>

<br>

Subject: Digest Footer<br>

<br>

______________________________<wbr>_________________<br>

midPoint mailing list<br>

<a href="mailto:midPoint@lists.evolveum.com">midPoint@lists.evolveum.com</a><br>

<a href="http://lists.evolveum.com/mailman/listinfo/midpoint" rel="noreferrer" target="_blank">http://lists.evolveum.com/<wbr>mailman/listinfo/midpoint</a><br>

<br>

<br>

------------------------------<br>

<br>

End of midPoint Digest, Vol 59, Issue 28<br>

******************************<wbr>**********<br>

</blockquote></div><br></div></div></div></div>