From 3a62fa9bd92f2b687cb839b82ab7c19635501718 Mon Sep 17 00:00:00 2001
From: MaxKey <shimingxy@qq.com>
Date: Sun, 21 Mar 2021 22:38:50 +0800
Subject: [PATCH] Update ActiveDirectoryUser.java

---
 .../constants/ldap/ActiveDirectoryUser.java   | 82 +++++++------------
 1 file changed, 31 insertions(+), 51 deletions(-)

diff --git a/maxkey-core/src/main/java/org/maxkey/constants/ldap/ActiveDirectoryUser.java b/maxkey-core/src/main/java/org/maxkey/constants/ldap/ActiveDirectoryUser.java
index 493eb46fd..6ea094da5 100644
--- a/maxkey-core/src/main/java/org/maxkey/constants/ldap/ActiveDirectoryUser.java
+++ b/maxkey-core/src/main/java/org/maxkey/constants/ldap/ActiveDirectoryUser.java
@@ -27,35 +27,38 @@ import java.io.UnsupportedEncodingException;
  */
 
 public class ActiveDirectoryUser {
-    /*
-	 * userAccountControl值得说明
+	
+	/** userAccountControl值得说明
 	 * http://support.microsoft.com/zh-cn/kb/305144
 	 * https://docs.microsoft.com/en-us/troubleshoot/windows-server/identity/useraccountcontrol-manipulate-account-properties
-	 * 
-	 *	Property flag				Value in hexadecimal	Value in decimal
-	 *	SCRIPT							0x0001					1
-	 *	ACCOUNTDISABLE					0x0002					2
-	 *	HOMEDIR_REQUIRED				0x0008					8
-	 *	LOCKOUT							0x0010					16
-	 *	PASSWD_NOTREQD					0x0020					32
-	 *	PASSWD_CANT_CHANGE				0x0040					64    		You can't assign this permission by directly modifying the UserAccountControl attribute. For information about how to set the permission programmatically, see the Property flag descriptions section.
-	 *	ENCRYPTED_TEXT_PWD_ALLOWED		0x0080					128
-	 *	TEMP_DUPLICATE_ACCOUNT			0x0100					256
-	 *	NORMAL_ACCOUNT					0x0200					512
-	 *	INTERDOMAIN_TRUST_ACCOUNT		0x0800					2048
-	 *	WORKSTATION_TRUST_ACCOUNT		0x1000					4096
-	 *	SERVER_TRUST_ACCOUNT			0x2000					8192
-	 *	DONT_EXPIRE_PASSWORD			0x10000					65536
-	 *	MNS_LOGON_ACCOUNT				0x20000					131072
-	 *	SMARTCARD_REQUIRED				0x40000					262144
-	 *	TRUSTED_FOR_DELEGATION			0x80000					524288
-	 *	NOT_DELEGATED					0x100000				1048576
-	 *	USE_DES_KEY_ONLY				0x200000				2097152
-	 *	DONT_REQ_PREAUTH				0x400000				4194304
-	 *	PASSWORD_EXPIRED				0x800000				8388608
-	 *	TRUSTED_TO_AUTH_FOR_DELEGATION	0x1000000				16777216
-	 *	PARTIAL_SECRETS_ACCOUNT			0x04000000				67108864
-	 *
+	 */
+	public static class userAccountControl{
+							//Property flag				Value in hexadecimal	Value in decimal
+		public static final int	SCRIPT							=0x0001			;//		1
+		public static final int	ACCOUNTDISABLE					=0x0002			;//		2
+		public static final int	HOMEDIR_REQUIRED				=0x0008			;//		8
+		public static final int	LOCKOUT							=0x0010			;//		16
+		public static final int	PASSWD_NOTREQD					=0x0020			;//		32
+		public static final int	PASSWD_CANT_CHANGE				=0x0040			;//		64    		You can't assign this permission by directly modifying the UserAccountControl attribute. For information about how to set the permission programmatically, see the Property flag descriptions section.
+		public static final int	ENCRYPTED_TEXT_PWD_ALLOWED		=0x0080			;//		128
+		public static final int	TEMP_DUPLICATE_ACCOUNT			=0x0100			;//		256
+		public static final int	NORMAL_ACCOUNT					=0x0200			;//		512
+		public static final int	INTERDOMAIN_TRUST_ACCOUNT		=0x0800			;//		2048
+		public static final int	WORKSTATION_TRUST_ACCOUNT		=0x1000			;//		4096
+		public static final int	SERVER_TRUST_ACCOUNT			=0x2000			;//		8192
+		public static final int	DONT_EXPIRE_PASSWORD			=0x10000		;//		65536
+		public static final int	MNS_LOGON_ACCOUNT				=0x20000		;//		131072
+		public static final int	SMARTCARD_REQUIRED				=0x40000		;//		262144
+		public static final int	TRUSTED_FOR_DELEGATION			=0x80000		;//		524288
+		public static final int	NOT_DELEGATED					=0x100000		;//		1048576
+		public static final int	USE_DES_KEY_ONLY				=0x200000		;//		2097152
+		public static final int	DONT_REQ_PREAUTH				=0x400000		;//		4194304
+		public static final int	PASSWORD_EXPIRED				=0x800000		;//		8388608
+		public static final int	TRUSTED_TO_AUTH_FOR_DELEGATION	=0x1000000		;//		16777216
+		public static final int	PARTIAL_SECRETS_ACCOUNT			=0x04000000		;//		67108864
+	}
+	
+    /*
 	 *常规
 	 *  名				First Name			givenName
 	 *	姓				Last Name			sn
@@ -164,28 +167,5 @@ public class ActiveDirectoryUser {
 	        return ("\"" + password + "\"").getBytes("UTF-16LE");
 	}
 	
-	public static class userAccountControl{
-		public static final int	SCRIPT							=0x0001			;//		1
-		public static final int	ACCOUNTDISABLE					=0x0002			;//		2
-		public static final int	HOMEDIR_REQUIRED				=0x0008			;//		8
-		public static final int	LOCKOUT							=0x0010			;//		16
-		public static final int	PASSWD_NOTREQD					=0x0020			;//		32
-		public static final int	PASSWD_CANT_CHANGE				=0x0040			;//		64    		You can't assign this permission by directly modifying the UserAccountControl attribute. For information about how to set the permission programmatically, see the Property flag descriptions section.
-		public static final int	ENCRYPTED_TEXT_PWD_ALLOWED		=0x0080			;//		128
-		public static final int	TEMP_DUPLICATE_ACCOUNT			=0x0100			;//		256
-		public static final int	NORMAL_ACCOUNT					=0x0200			;//		512
-		public static final int	INTERDOMAIN_TRUST_ACCOUNT		=0x0800			;//		2048
-		public static final int	WORKSTATION_TRUST_ACCOUNT		=0x1000			;//		4096
-		public static final int	SERVER_TRUST_ACCOUNT			=0x2000			;//		8192
-		public static final int	DONT_EXPIRE_PASSWORD			=0x10000		;//		65536
-		public static final int	MNS_LOGON_ACCOUNT				=0x20000		;//		131072
-		public static final int	SMARTCARD_REQUIRED				=0x40000		;//		262144
-		public static final int	TRUSTED_FOR_DELEGATION			=0x80000		;//		524288
-		public static final int	NOT_DELEGATED					=0x100000		;//		1048576
-		public static final int	USE_DES_KEY_ONLY				=0x200000		;//		2097152
-		public static final int	DONT_REQ_PREAUTH				=0x400000		;//		4194304
-		public static final int	PASSWORD_EXPIRED				=0x800000		;//		8388608
-		public static final int	TRUSTED_TO_AUTH_FOR_DELEGATION	=0x1000000		;//		16777216
-		public static final int	PARTIAL_SECRETS_ACCOUNT			=0x04000000		;//		67108864
-	}
+	
 }