I am trying to set up a CAS server authenticating user based on a database
with a very specific structure/content.
User password are stored in a very specific way. Two columns: user
(username), pwd (encrypted-hashed password).
Encrypted-hashed password means :
Plain pwd -> BCrypt-hashed with a random-generated salt and 12 iterations
-> AES-Encrypted with a static known key
In a nutshell : Crypto.encryptAES(BCrypt.hash(pwd, BCrypt.gensalt(12)),
I test user authentication with BCrypt.checkpw(passwordToCheck,
Crypto.decryptAES(retrievedStoredPwd, myStaticKey)) === true
Where should I start to have it working with CAS Server // Spring ?
Thanks for your hints !!
PS : The "why storing password this way" is a good question. All this come
from this article :
You received this message because you are subscribed to the Google Groups "CAS
To unsubscribe from this group and stop receiving emails from it, send an email
To post to this group, send email to firstname.lastname@example.org.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit
For more options, visit https://groups.google.com/a/apereo.org/d/optout.