[jira] [Updated] (SOLR-11279) It is necessary to specify how to generate a password when used Basic Authentication!

chenmin (JIRA) Fri, 20 Oct 2017 03:05:29 -0700

     [ 
https://issues.apache.org/jira/browse/SOLR-11279?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


chenmin updated SOLR-11279:
---------------------------
    Fix Version/s: master (8.0)

> It is necessary to specify how to generate a password when used  Basic 
> Authentication!
> --------------------------------------------------------------------------------------
>
>                 Key: SOLR-11279
>                 URL: https://issues.apache.org/jira/browse/SOLR-11279
>             Project: Solr
>          Issue Type: Improvement
>      Security Level: Public(Default Security Level. Issues are Public) 
>    Affects Versions: 5.3.1
>            Reporter: chenmin
>             Fix For: master (8.0)
>
>
>          Follow the documentation ,"Usernames and passwords (as a 
> sha256(password+salt) hash) could be added when the file is created.
>          Actually, I do not know how to generate a password.
>          Finding code as:
>           public static String getSaltedHashedValue(String pwd) {
>                  final Random r = new SecureRandom();
>                  byte[] salt = new byte[32];
>                  r.nextBytes(salt);
>                  String saltBase64 = Base64.encodeBase64String(salt);
>                  String val = sha256(pwd, saltBase64) + " " + saltBase64;
>                  return val;
>           }
>          I  think we shoud give an example to generate password in ref guide! 



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

[jira] [Updated] (SOLR-11279) It is necessary to specify how to generate a password when used Basic Authentication!

Reply via email to