You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@geronimo.apache.org by "Matt Hogstrom (JIRA)" <ji...@apache.org> on 2006/11/14 22:22:41 UTC
[jira] Updated: (GERONIMO-1716) Add usage of SimpleEncryption to
PropertiesFileLoginModule and Admin Console
[ http://issues.apache.org/jira/browse/GERONIMO-1716?page=all ]
Matt Hogstrom updated GERONIMO-1716:
------------------------------------
Fix Version/s: Wish List
(was: 1.1.2)
(was: 1.2)
Current patch does not appliy. This is an improvement that would be nice. Moving to wishlist.
> Add usage of SimpleEncryption to PropertiesFileLoginModule and Admin Console
> ----------------------------------------------------------------------------
>
> Key: GERONIMO-1716
> URL: http://issues.apache.org/jira/browse/GERONIMO-1716
> Project: Geronimo
> Issue Type: Improvement
> Security Level: public(Regular issues)
> Components: security
> Affects Versions: 1.0, 1.1, 1.2
> Environment: Any
> Reporter: Donald Woods
> Assigned To: Donald Woods
> Priority: Minor
> Fix For: Wish List
>
> Attachments: Geronimo-1716.patch
>
>
> Enhancement to the default PropertiesFileLoginModule and Console to encrypt user passwords in users.properties.
> To do this, PropertiesFileLoginModule and Console will be updated to use the SimpleEncryption utility class, just like the deployer, to read/write passwords that have the {Simple} key in front of encrypted passwords.
> The loadProperties() method in PropertiesFileLoginModule will also be updated to rewrite the users.properties file if it detects unencrypted passwords, which will allow users to manually edit the file to update a password and then have it automatically encrypted when the next login event occurs.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira