Hi,
That would be awesome.
Next thing would be to add:
* class PasswordHashSPI
* interface PasswordHashProviderFactory
* interface PasswordHashProvider
These should be added to services module. You would also need to change Pbkdf2PasswordEncoder to be the default implementation.
Instead of using Pbkdf2PasswordEncoder directly code should use session.getProvider(PasswordHashProvider.class, algorithm). algorithm should be set to on credential entities (UserCredentialValueModel.algorithm). We also need a mechanism to specify the default algorithm (that would be used when users sets new password and also for existing users in the db).