[jira] [Created] (SOLR-11279) It is necessary to specify how to generate a password when used Basic Authentication!

chenmin (JIRA) Tue, 22 Aug 2017 18:55:14 -0700

chenmin created SOLR-11279:
------------------------------

             Summary: It is necessary to specify how to generate a password 
when used  Basic Authentication!
                 Key: SOLR-11279
                 URL: https://issues.apache.org/jira/browse/SOLR-11279
             Project: Solr
          Issue Type: Improvement
      Security Level: Public (Default Security Level. Issues are Public)
    Affects Versions: 5.3.1
            Reporter: chenmin




         Follow the documentation ,"Usernames and passwords (as a 
sha256(password+salt) hash) could be added when the file is created.

         Actually, I do not know how to generate a password.
         Finding code as:

          public static String getSaltedHashedValue(String pwd) {
                 final Random r = new SecureRandom();
                 byte[] salt = new byte[32];
                 r.nextBytes(salt);
                 String saltBase64 = Base64.encodeBase64String(salt);
                 String val = sha256(pwd, saltBase64) + " " + saltBase64;
                 return val;
          }

         I  think we shoud give an example to generate password in ref guide! 



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Created] (SOLR-11279) It is necessary to specify how to generate a password when used Basic Authentication!

Reply via email to