Password Management - JDBC

The account password and security questions may be stored inside a database.

JDBC support is enabled by including the following dependencies in the WAR overlay:

1
2
3
4
5
<dependency>
    <groupId>org.apereo.cas</groupId>
    <artifactId>cas-server-support-pm-jdbc</artifactId>
    <version>${cas.version}</version>
</dependency>

To see the relevant list of CAS properties, please review this guide.

The expected database schema for the user accounts is:

1
create table pm_table_accounts (id int, userid varchar(255), password varchar(255), email varchar(255), phone varchar(255));

The expected database schema for account security questions is:

1
create table pm_table_questions (id int, userid varchar(255), question varchar(255), answer varchar(255));

Password History

This feature is does also enable password history tracking and storage. Managing passwords via JDBC will switch CAS to use the same JDBC configuration for password history.