You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "Sachin Patel (JIRA)" <de...@geronimo.apache.org> on 2006/07/21 19:36:14 UTC
[jira] Updated: (GERONIMO-1716) Add usage of SimpleEncryption to
PropertiesFileLoginModule and Admin Console
[ http://issues.apache.org/jira/browse/GERONIMO-1716?page=all ]
Sachin Patel updated GERONIMO-1716:
-----------------------------------
Assignee: (was: Donald Woods)
Unassigning this so it can be picked up by a committer for inclusion in 1.1.1
> Add usage of SimpleEncryption to PropertiesFileLoginModule and Admin Console
> ----------------------------------------------------------------------------
>
> Key: GERONIMO-1716
> URL: http://issues.apache.org/jira/browse/GERONIMO-1716
> Project: Geronimo
> Issue Type: Improvement
> Security Level: public(Regular issues)
> Components: security
> Affects Versions: 1.0, 1.1, 1.2
> Environment: Any
> Reporter: Donald Woods
> Priority: Minor
> Fix For: 1.1.1
>
> Attachments: Geronimo-1716.patch
>
>
> Enhancement to the default PropertiesFileLoginModule and Console to encrypt user passwords in users.properties.
> To do this, PropertiesFileLoginModule and Console will be updated to use the SimpleEncryption utility class, just like the deployer, to read/write passwords that have the {Simple} key in front of encrypted passwords.
> The loadProperties() method in PropertiesFileLoginModule will also be updated to rewrite the users.properties file if it detects unencrypted passwords, which will allow users to manually edit the file to update a password and then have it automatically encrypted when the next login event occurs.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira