I'm using the standard passwordMatcher so I don't know if it'll work for you, but the DefaultPasswordService.html#passwordsMatch(java.lang.Object, java.lang.String) method ( http://shiro.apache.org/static/current/apidocs/org/apache/shiro/authc/credential/DefaultPasswordService.html#passwordsMatch%28java.lang.Object,%20java.lang.String%29) works for me to do this.
On Wed, May 2, 2012 at 4:26 PM, tarka <[email protected]> wrote: > I am currently using the new 1.2 passwordServices and passwordMatcher with > a > jdbcRealm to authenticate users. I am using a custom passwordMatcher that > extends the standard passwordMatcher as I need to retrieve the encrypted > passwords back from the bd. > > I have a number scenarios where I need to perform a password check for > added > security. For example if the user wants to delete their account I want them > to have to re-enter their password to confirm the action. Basically I'm > looking for a method that returns a boolean to indicate if the password is > correct. All my attempts so far have failed miserably so any suggestions > would be really appreciated. > > Thanks > > -- > View this message in context: > http://shiro-user.582556.n2.nabble.com/Password-match-tp7520360.html > Sent from the Shiro User mailing list archive at Nabble.com. >
