You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@shiro.apache.org by "Les Hazlewood (JIRA)" <ji...@apache.org> on 2010/10/28 19:12:23 UTC
[jira] Resolved: (SHIRO-186) Credentials Hashing:
AuthenticationInfo should be able to return a salt for credentials
comparison
[ https://issues.apache.org/jira/browse/SHIRO-186?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Les Hazlewood resolved SHIRO-186.
---------------------------------
Resolution: Fixed
> Credentials Hashing: AuthenticationInfo should be able to return a salt for credentials comparison
> --------------------------------------------------------------------------------------------------
>
> Key: SHIRO-186
> URL: https://issues.apache.org/jira/browse/SHIRO-186
> Project: Shiro
> Issue Type: Improvement
> Components: Authentication (log-in), Cryptography & Hashing
> Affects Versions: 1.0.0, 1.0.1
> Reporter: Les Hazlewood
> Assignee: Les Hazlewood
> Fix For: 1.1.0
>
>
> When hashing credentials, the CredentialsMatcher must be able to acquire a salt from the AuthenticationInfo returned from the realm since salts are account/user-specific.
> The HashedCredentialsMatcher should be updated to acquire the salt, if it exists, from the AuthenticationInfo and use that to perform a hash before comparing credentials.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.