Spring Security
  1. Spring Security
  2. SEC-1688

Allow injection of PasswordEncoder from crypto module into DaoAuthenticationProvider

    Details

    • Type: Improvement Improvement
    • Status: Closed
    • Priority: Minor Minor
    • Resolution: Complete
    • Affects Version/s: None
    • Fix Version/s: 3.1.0.RC2
    • Component/s: Core
    • Labels:
      None

      Description

      Ultimately, we will deprecate the use of a SaltSource in favour of random salt and the simpler PasswordEncoder interface. With this in mind, we need to allow injection of the latter into DaoAuthenticationProvider. This will require that the core classes depend on the crypto module.

        Activity

        Hide
        Luke Taylor added a comment -

        The class now takes either type via the setPasswordEncoder. It uses an adapter to convert the crypto version to one of the former encoders.

        Show
        Luke Taylor added a comment - The class now takes either type via the setPasswordEncoder. It uses an adapter to convert the crypto version to one of the former encoders.

          People

          • Assignee:
            Luke Taylor
            Reporter:
            Luke Taylor
          • Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

            • Created:
              Updated:
              Resolved: