PasswordService usage is documented in the JavaDoc: http://shiro.apache.org/static/1.2.1/apidocs/org/apache/shiro/authc/credential/PasswordService.html
You _should_ use Shiro's PasswordService when creating user accounts or setting their passwords initially. This is covered in the above JavaDoc in the "Account Creation or Password Reset" section. Shiro will use the same PasswordService instance during a login attempt for password comparison (covered in the "Login Password Comparison" section). In other words, the PasswordService is used twice: once by you when you set your user's password, e.g. to store in a database column, and once (later) by Shiro during a login attempt. If these concepts were unclear in the PasswordService JavaDoc, please let me know and I'll be happy to update it to clear any confusion others might have (seriously, if it was confusing to you, it might be others as well). Thanks, -- Les Hazlewood | @lhazlewood CTO, Stormpath | http://stormpath.com | @goStormpath | 888.391.5282 Stormpath wins GigaOM Structure Launchpad Award! http://bit.ly/MvZkMk On Thu, Feb 14, 2013 at 3:39 PM, benjamin0258 <[email protected]> wrote: > > Hi, > > I insert manualy some username and password to test. I am using online tools > to encrypt password before to insert. The password column type is varchar. > > Thank > > Ben > > > > ----- > Benji > -- > View this message in context: > http://shiro-user.582556.n2.nabble.com/Shiro-Spring-integration-PasswordService-tp7578244p7578257.html > Sent from the Shiro User mailing list archive at Nabble.com.
