public String processForcedPasswordChange(String username, HttpServletRequest request, Model model) { final String resetPasswordUrl = getResetPasswordUrl(request); final GenericResponse errorResponse = customerService.sendForcedPasswordChangeNotification(username, resetPasswordUrl); if (errorResponse.getHasErrors()) { final String errorCode = errorResponse.getErrorCodesList().get(0); model.addAttribute("errorCode", errorCode); return getForcedPasswordChangeView(); } else { if (BLCRequestUtils.isOKtoUseSession(new ServletWebRequest(request))) { request.getSession(true).setAttribute(CHANGE_PASSWORD_USERNAME_REQUEST_ATTR, username); } return getForcedPasswordChangeSuccessView(); } }