Skip to content

Added support for salting#1040

Open
AW3i wants to merge 4 commits intoappserver-io:masterfrom
AW3i:hashes
Open

Added support for salting#1040
AW3i wants to merge 4 commits intoappserver-io:masterfrom
AW3i:hashes

Conversation

@AW3i
Copy link
Contributor

@AW3i AW3i commented Oct 19, 2016

I've added support for hash salting and support for more hashing algorithms.

There's a new parameter called saltQuery which is defined in context.xml and expects
a DQL Query string to get the salt from a specified table.

The hashAlgorithm in context.xml is now being respected and can be given the following values:

  • md5
  • sha1
  • sha256
  • sha512
  • PASSWORD_BCRYPT
  • PASSWORD_DEFAULT

if none of the above is given the password hashing mechanism just returns the password with no hashing.

AW3i added 3 commits October 18, 2016 18:35
@AW3i
Added SaltQuery parameter
8b8a3be
@AW3i
Implemented functionality for getUserSalt
5e6623d
@AW3i
Added salt support for password hashing
1639fc9 
- Also added more hashing algorithms which can be used
- Salt is retrieved by the saltQuery parameter in context.xml
  which should include a DQL query
@appserver-ci
Copy link
Contributor

appserver-ci commented Oct 19, 2016

Can one of the admins verify this patch?

1 similar comment
@appserver-ci
Copy link
Contributor

appserver-ci commented Oct 19, 2016

Can one of the admins verify this patch?

This was referenced Oct 19, 2016
Open
Open
@wick-ed
Copy link
Member

wick-ed commented Oct 19, 2016

Nice, but this might be a good opportunity to drop MD5 support alltogether :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@AW3i @appserver-ci @wick-ed