[jboss-user] [Security & JAAS/JBoss] - Re: Compare a VarBinary Password
aeguzmanv
do-not-reply at jboss.com
Mon Feb 19 13:41:49 EST 2007
Hi, and thank for your reply... I resolved the situacion easy, I just convert the bytes to Hex and change the hashEncoding to "Hex" instead of "Base64"
login-config.xml
<application-policy name = "Servipago-domain">
<login-module code = "com.servi.seguridad.jboss.ServiDatabaseServerLoginModule" flag="required">
<module-option name = "dsJndiName">java:/ServiDS</module-option>
<module-option name = "principalsQuery">
SELECT Co_Clave AS Password FROM Usuario_Sistema_Internet WHERE Di_Correo=?
</module-option>
<module-option name = "rolesQuery">
SELECT r.de_rol AS Role, 'Roles' FROM rol r, usuario_sistema_internet usi WHERE usi.di_correo= ? AND usi.co_rol = r.co_rol
</module-option>
<module-option name = "hashAlgorithm">MD5</module-option>
<module-option name = "hashEncoding">hex</module-option>
<module-option name = "password-stacking">useFirstPass</module-option>
</login-module>
</application-policy>
ServiDatabaseServerLoginModule.java overwrite method convertRawPassword:
protected String convertRawPassword(String rawPassword)
{
rawPassword = Hex.toString(rawPassword.getBytes());
return rawPassword;
}
Thanks,
Alejandro
View the original post : http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4018978#4018978
Reply to the post : http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&p=4018978
More information about the jboss-user
mailing list