[
https://issues.apache.org/jira/browse/SYNCOPE-1666?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17515291#comment-17515291
]
ASF subversion and git services commented on SYNCOPE-1666:
----------------------------------------------------------
Commit 50e10e6cdb119121a1d405f16612b5429564f26b in syncope's branch
refs/heads/2_1_X from Andrea Patricelli
[ https://gitbox.apache.org/repos/asf?p=syncope.git;h=50e10e6 ]
[SYNCOPE-1666] linked account must have AES as encryption algorithm (#333)
* [SYNCOPE-1666] linked account must have AES as encryption algorithm
> Security Answer encryption
> ---------------------------
>
> Key: SYNCOPE-1666
> URL: https://issues.apache.org/jira/browse/SYNCOPE-1666
> Project: Syncope
> Issue Type: Improvement
> Components: core
> Affects Versions: 2.1.10
> Reporter: Andrea Patricelli
> Assignee: Andrea Patricelli
> Priority: Major
> Fix For: 2.1.11, 3.0.0
>
>
> Security answer is stored as cleartext field, but, since contains sesitive
> information, must be encrypted. We hav to use the same algorithms available
> for password.
> Provide also an upgrade guide and a migration tool to encrypt passwords on
> already existing installations.
--
This message was sent by Atlassian Jira
(v8.20.1#820001)
