You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@shiro.apache.org by "Philippe Laflamme (JIRA)" <ji...@apache.org> on 2010/01/07 20:44:54 UTC
[jira] Created: (SHIRO-125) Support overrding the
credentialsMatcher for the implicit IniRealm
Support overrding the credentialsMatcher for the implicit IniRealm
------------------------------------------------------------------
Key: SHIRO-125
URL: https://issues.apache.org/jira/browse/SHIRO-125
Project: Shiro
Issue Type: Improvement
Components: Configuration, Realms
Reporter: Philippe Laflamme
When using the implicit IniRealm, it would be useful to override the credentialsMatcher to support, non-plaintext passwords in the [users] section.
Example shiro.ini:
---
[main]
# The [users] section will contain SHA256 hashed passwords
credentialsMatcher=org.apache.shiro.authc.credential.Sha256CredentialsMatcher
[users]
# Hex value of SHA256 hashed password
aUser=28eeeb5e16f38c67dfcc73733ee3649f9b0adcc2a6cfc957d40814348459ee7c
---
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Resolved: (SHIRO-125) Support overrding the
credentialsMatcher for the implicit IniRealm
Posted by "Les Hazlewood (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHIRO-125?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Les Hazlewood resolved SHIRO-125.
---------------------------------
Resolution: Fixed
Fix Version/s: 1.0
This was implemented by making the implicitly created IniRealm available in the [main] section. The existence of a non-empty [users] or [roles] sections will trigger the 'iniRealm' object to be available for configuration like any other object in the [main] section.
[main]
...
credentialsMatcher = org.apache.shiro.authc.credential.Sha256CredentialsMatcher
iniRealm.credentialsMatcher = $credentialsMatcher
...
[users]
admin = 2bb80d537b1da3e38bd30361aa855686bde0eacd7162fef6a25fe97bf527a25b, role1, role2, ...
...
The IniSecurityManagerFactoryTest.testImplicitIniRealmWithAdditionalRealmConfiguration test case shows validation.
> Support overrding the credentialsMatcher for the implicit IniRealm
> ------------------------------------------------------------------
>
> Key: SHIRO-125
> URL: https://issues.apache.org/jira/browse/SHIRO-125
> Project: Shiro
> Issue Type: Improvement
> Components: Configuration, Realms
> Reporter: Philippe Laflamme
> Fix For: 1.0
>
>
> When using the implicit IniRealm, it would be useful to override the credentialsMatcher to support, non-plaintext passwords in the [users] section.
> Example shiro.ini:
> ---
> [main]
> # The [users] section will contain SHA256 hashed passwords
> credentialsMatcher=org.apache.shiro.authc.credential.Sha256CredentialsMatcher
> [users]
> # Hex value of SHA256 hashed password
> aUser=28eeeb5e16f38c67dfcc73733ee3649f9b0adcc2a6cfc957d40814348459ee7c
> ---
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (SHIRO-125) Support overrding the
credentialsMatcher for the implicit IniRealm
Posted by "Les Hazlewood (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHIRO-125?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12800910#action_12800910 ]
Les Hazlewood commented on SHIRO-125:
-------------------------------------
That wouldn't really apply in the [main] section. In practice, [main] is really just a map of objects, keyed by name.
The documentation has been updated to reflect his configuration mechansim, with the implicit IniRealm, here:
http://cwiki.apache.org/confluence/display/SHIRO/Configuration
You can see how the lines are formatted, and how each line corresponds to interacting with an object in that map.
Cheers,
Les
> Support overrding the credentialsMatcher for the implicit IniRealm
> ------------------------------------------------------------------
>
> Key: SHIRO-125
> URL: https://issues.apache.org/jira/browse/SHIRO-125
> Project: Shiro
> Issue Type: Improvement
> Components: Configuration, Realms
> Reporter: Philippe Laflamme
> Fix For: 1.0
>
>
> When using the implicit IniRealm, it would be useful to override the credentialsMatcher to support, non-plaintext passwords in the [users] section.
> Example shiro.ini:
> ---
> [main]
> # The [users] section will contain SHA256 hashed passwords
> credentialsMatcher=org.apache.shiro.authc.credential.Sha256CredentialsMatcher
> [users]
> # Hex value of SHA256 hashed password
> aUser=28eeeb5e16f38c67dfcc73733ee3649f9b0adcc2a6cfc957d40814348459ee7c
> ---
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (SHIRO-125) Support overrding the
credentialsMatcher for the implicit IniRealm
Posted by "Les Hazlewood (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHIRO-125?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12797773#action_12797773 ]
Les Hazlewood commented on SHIRO-125:
-------------------------------------
Great idea - thanks for the issue!
> Support overrding the credentialsMatcher for the implicit IniRealm
> ------------------------------------------------------------------
>
> Key: SHIRO-125
> URL: https://issues.apache.org/jira/browse/SHIRO-125
> Project: Shiro
> Issue Type: Improvement
> Components: Configuration, Realms
> Reporter: Philippe Laflamme
>
> When using the implicit IniRealm, it would be useful to override the credentialsMatcher to support, non-plaintext passwords in the [users] section.
> Example shiro.ini:
> ---
> [main]
> # The [users] section will contain SHA256 hashed passwords
> credentialsMatcher=org.apache.shiro.authc.credential.Sha256CredentialsMatcher
> [users]
> # Hex value of SHA256 hashed password
> aUser=28eeeb5e16f38c67dfcc73733ee3649f9b0adcc2a6cfc957d40814348459ee7c
> ---
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Issue Comment Edited: (SHIRO-125) Support overrding the
credentialsMatcher for the implicit IniRealm
Posted by "Les Hazlewood (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHIRO-125?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12800863#action_12800863 ]
Les Hazlewood edited comment on SHIRO-125 at 1/15/10 7:32 PM:
--------------------------------------------------------------
This was implemented by making the implicitly created IniRealm available in the [main] section. The existence of a non-empty [users] or [roles] sections will trigger the 'iniRealm' object to be available for configuration like any other object in the [main] section.
[main]
...
credentialsMatcher = org.apache.shiro.authc.credential.Sha256CredentialsMatcher
iniRealm.credentialsMatcher = $credentialsMatcher
...
[users]
user1 = 2bb80d537b1da3e38bd30361aa855686bde0eacd7162fef6a25fe97bf527a25b, role1, role2, ...
...
The IniSecurityManagerFactoryTest.testImplicitIniRealmWithAdditionalRealmConfiguration test case shows validation.
was (Author: lhazlewood):
This was implemented by making the implicitly created IniRealm available in the [main] section. The existence of a non-empty [users] or [roles] sections will trigger the 'iniRealm' object to be available for configuration like any other object in the [main] section.
[main]
...
credentialsMatcher = org.apache.shiro.authc.credential.Sha256CredentialsMatcher
iniRealm.credentialsMatcher = $credentialsMatcher
...
[users]
admin = 2bb80d537b1da3e38bd30361aa855686bde0eacd7162fef6a25fe97bf527a25b, role1, role2, ...
...
The IniSecurityManagerFactoryTest.testImplicitIniRealmWithAdditionalRealmConfiguration test case shows validation.
> Support overrding the credentialsMatcher for the implicit IniRealm
> ------------------------------------------------------------------
>
> Key: SHIRO-125
> URL: https://issues.apache.org/jira/browse/SHIRO-125
> Project: Shiro
> Issue Type: Improvement
> Components: Configuration, Realms
> Reporter: Philippe Laflamme
> Fix For: 1.0
>
>
> When using the implicit IniRealm, it would be useful to override the credentialsMatcher to support, non-plaintext passwords in the [users] section.
> Example shiro.ini:
> ---
> [main]
> # The [users] section will contain SHA256 hashed passwords
> credentialsMatcher=org.apache.shiro.authc.credential.Sha256CredentialsMatcher
> [users]
> # Hex value of SHA256 hashed password
> aUser=28eeeb5e16f38c67dfcc73733ee3649f9b0adcc2a6cfc957d40814348459ee7c
> ---
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
[jira] Commented: (SHIRO-125) Support overrding the
credentialsMatcher for the implicit IniRealm
Posted by "Philippe Laflamme (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/SHIRO-125?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12800871#action_12800871 ]
Philippe Laflamme commented on SHIRO-125:
-----------------------------------------
Great!
Not really important, but how about using "this" instead of "iniRealm"? Sounds more OO and "this" is a common reserved word.
[main]
...
credentialsMatcher = org.apache.shiro.authc.credential.Sha256CredentialsMatcher
this.credentialsMatcher=$credentialsMatcher
...
[users]
...
> Support overrding the credentialsMatcher for the implicit IniRealm
> ------------------------------------------------------------------
>
> Key: SHIRO-125
> URL: https://issues.apache.org/jira/browse/SHIRO-125
> Project: Shiro
> Issue Type: Improvement
> Components: Configuration, Realms
> Reporter: Philippe Laflamme
> Fix For: 1.0
>
>
> When using the implicit IniRealm, it would be useful to override the credentialsMatcher to support, non-plaintext passwords in the [users] section.
> Example shiro.ini:
> ---
> [main]
> # The [users] section will contain SHA256 hashed passwords
> credentialsMatcher=org.apache.shiro.authc.credential.Sha256CredentialsMatcher
> [users]
> # Hex value of SHA256 hashed password
> aUser=28eeeb5e16f38c67dfcc73733ee3649f9b0adcc2a6cfc957d40814348459ee7c
> ---
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.