[ http://issues.apache.org/jira/browse/GERONIMO-1716?page=all ]
Matt Hogstrom updated GERONIMO-1716:
------------------------------------
Fix Version/s: 1.1.2
1.2
(was: 1.1.1)
> Add usage of SimpleEncryption to PropertiesFileLoginModule and Admin Console
> ----------------------------------------------------------------------------
>
> Key: GERONIMO-1716
> URL: http://issues.apache.org/jira/browse/GERONIMO-1716
> Project: Geronimo
> Issue Type: Improvement
> Security Level: public(Regular issues)
> Components: security
> Affects Versions: 1.0, 1.1, 1.2
> Environment: Any
> Reporter: Donald Woods
> Assigned To: Donald Woods
> Priority: Minor
> Fix For: 1.1.2, 1.2
>
> Attachments: Geronimo-1716.patch
>
>
> Enhancement to the default PropertiesFileLoginModule and Console to encrypt
> user passwords in users.properties.
> To do this, PropertiesFileLoginModule and Console will be updated to use the
> SimpleEncryption utility class, just like the deployer, to read/write
> passwords that have the {Simple} key in front of encrypted passwords.
> The loadProperties() method in PropertiesFileLoginModule will also be updated
> to rewrite the users.properties file if it detects unencrypted passwords,
> which will allow users to manually edit the file to update a password and
> then have it automatically encrypted when the next login event occurs.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators:
http://issues.apache.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
