Hi,
(AppFuse basic 2.0.1 Spring MVC + Hibernate & appfuse jars as dependencies)
If I change the default admin's password via the user form, my new
password shows up as plain text in the database.
I did make some non-related changes to WEB-INF/security.xml (to enable
regular users to see non-admin pages without logging in), so I made
sure to uncomment the following lines in that file. Shouldn't this
give me encrypted passwords in the database?
<bean id="daoAuthenticationProvider"
class="org.acegisecurity.providers.dao.DaoAuthenticationProvider">
<property name="userDetailsService" ref="userDao"/>
<property name="passwordEncoder" ref="passwordEncoder"/>
</bean>
<bean id="passwordEncoder"
class="org.acegisecurity.providers.encoding.ShaPasswordEncoder"/>
Ger-Jan
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@appfuse.dev.java.net
For additional commands, e-mail: users-h...@appfuse.dev.java.net
