Credentials Hashing: AuthenticationInfo should be able to return a salt for
credentials comparison
--------------------------------------------------------------------------------------------------
Key: SHIRO-186
URL: https://issues.apache.org/jira/browse/SHIRO-186
Project: Shiro
Issue Type: Improvement
Components: Authentication (log-in), Cryptography & Hashing
Affects Versions: 1.0.0, 1.0.1
Reporter: Les Hazlewood
Fix For: 1.1.0
When hashing credentials, the CredentialsMatcher must be able to acquire a salt
from the AuthenticationInfo returned from the realm since salts are
account/user-specific.
The HashedCredentialsMatcher should be updated to acquire the salt, if it
exists, from the AuthenticationInfo and use that to perform a hash before
comparing credentials.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
