[keycloak-user] Password Hashing
Evan Thompson
evanthomjd at gmail.com
Thu Aug 28 10:30:19 EDT 2014
Thanks for the quick response. I do have one follow up question. I was
further examining the data modal and saw that in the Credential table there
is a Salt column. I was wondering if that value accounts for the entire
salt used when encrypting the password or is only part of it.
Thank you once again,
Cheers,
Evan
On Thu, Aug 28, 2014 at 12:40 AM, Stian Thorgersen <stian at redhat.com> wrote:
> Keycloak uses PBKDF2 to hash passwords with a configurable number of
> iterations.
>
> ----- Original Message -----
> > From: "Evan Thompson" <evanthomjd at gmail.com>
> > To: keycloak-user at lists.jboss.org
> > Sent: Wednesday, 27 August, 2014 8:47:36 PM
> > Subject: [keycloak-user] Password Hashing
> >
> > Howdy,
> >
> > I've been looking into Keycloak and have a question in regards to
> password
> > hashing. I came across a closed JIRA item that discusses supporting
> bcrypt,
> > but the comments just state that improved password hashing has already
> been
> > added. I guess my question is what exactly does Keycloak provide/support
> in
> > terms of password encryption and is it configurable.
> >
> > Cheers,
> >
> > Evan
> >
> > _______________________________________________
> > keycloak-user mailing list
> > keycloak-user at lists.jboss.org
> > https://lists.jboss.org/mailman/listinfo/keycloak-user
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/keycloak-user/attachments/20140828/2c079f51/attachment.html
More information about the keycloak-user
mailing list