ChristopherSchultz commented on a change in pull request #336:
URL: https://github.com/apache/tomcat/pull/336#discussion_r467125860
##########
File path: java/org/apache/catalina/realm/MessageDigestCredentialHandler.java
##########
@@ -32,16 +32,13 @@
/**
* This credential handler supports the following forms of stored passwords:
* <ul>
- * <li><b>encodedCredential</b> - a hex encoded digest of the password digested
- * using the configured digest</li>
- * <li><b>{MD5}encodedCredential</b> - a Base64 encoded MD5 digest of the
- * password</li>
- * <li><b>{SHA}encodedCredential</b> - a Base64 encoded SHA1 digest of the
- * password</li>
- * <li><b>{SSHA}encodedCredential</b> - 20 character salt followed by the
salted
- * SHA1 digest Base64 encoded</li>
- * <li><b>salt$iterationCount$encodedCredential</b> - a hex encoded salt,
- * iteration code and a hex encoded credential, each separated by $</li>
+ * <li><b>encodedCredential</b> - a hex encoded digest of the password
digested using the configured digest</li>
+ * <li><b>{MD5}encodedCredential</b> - a Base64 encoded MD5 digest of the
password</li>
+ * <li><b>{SHA}encodedCredential</b> - a Base64 encoded SHA1 digest of the
password</li>
+ * <li><b>{SSHA}encodedCredential</b> - 20 character SHA1 digest Base64
encoded followed by salt</li>
+ * <li><b>{SSHA2}encodedCredential</b> - 20 character salt followed by the
salted digest Base64 encoded</li>
Review comment:
Javadoc says `SSHA2` but code uses `{SSHAv2}`.
----------------------------------------------------------------
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
For queries about this service, please contact Infrastructure at:
[email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
