I am trying to set up a CAS server authenticating user based on a database 
with a very specific structure/content.

User password are stored in a very specific way. Two columns: user 
(username), pwd (encrypted-hashed password).

Encrypted-hashed password means :

Plain pwd -> BCrypt-hashed with a random-generated salt and 12 iterations 
-> AES-Encrypted with a static known key
In a nutshell : Crypto.encryptAES(BCrypt.hash(pwd, BCrypt.gensalt(12)), 

I test user authentication with BCrypt.checkpw(passwordToCheck, 
Crypto.decryptAES(retrievedStoredPwd, myStaticKey)) === true

Where should I start to have it working with CAS Server // Spring ?

Thanks for your hints !!

PS : The "why storing password this way" is a good question. All this come 
from this article : 


You received this message because you are subscribed to the Google Groups "CAS 
Community" group.
To unsubscribe from this group and stop receiving emails from it, send an email 
to cas-user+unsubscr...@apereo.org.
To post to this group, send email to cas-user@apereo.org.
Visit this group at https://groups.google.com/a/apereo.org/group/cas-user/.
To view this discussion on the web visit 
For more options, visit https://groups.google.com/a/apereo.org/d/optout.

Reply via email to