You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@shiro.apache.org by "Les Hazlewood (JIRA)" <ji...@apache.org> on 2010/10/28 19:12:23 UTC

[jira] Resolved: (SHIRO-186) Credentials Hashing: AuthenticationInfo should be able to return a salt for credentials comparison

     [ https://issues.apache.org/jira/browse/SHIRO-186?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Les Hazlewood resolved SHIRO-186.
---------------------------------

    Resolution: Fixed

> Credentials Hashing: AuthenticationInfo should be able to return a salt for credentials comparison
> --------------------------------------------------------------------------------------------------
>
>                 Key: SHIRO-186
>                 URL: https://issues.apache.org/jira/browse/SHIRO-186
>             Project: Shiro
>          Issue Type: Improvement
>          Components: Authentication (log-in), Cryptography & Hashing
>    Affects Versions: 1.0.0, 1.0.1
>            Reporter: Les Hazlewood
>            Assignee: Les Hazlewood
>             Fix For: 1.1.0
>
>
> When hashing credentials, the CredentialsMatcher must be able to acquire a salt from the AuthenticationInfo returned from the realm since salts are account/user-specific.
> The HashedCredentialsMatcher should be updated to acquire the salt, if it exists, from the AuthenticationInfo and use that to perform a hash before comparing credentials.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.