[jboss-jira] [JBoss JIRA] (ELY-9) Password type: Crypt string raw material

[David Lloyd (JIRA)]

    [ https://issues.jboss.org/browse/ELY-9?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12973747#comment-12973747 ] 

David Lloyd commented on ELY-9:
-------------------------------

ftp://ftp.arlut.utexas.edu/pub/java_hashes/SHA-crypt.txt describes how to do the crypt string for SHA crypt ($5$ and $6$).  Note the _nonstandard_ base 64 alphabet.

> Password type: Crypt string raw material
> ----------------------------------------
>
>                 Key: ELY-9
>                 URL: https://issues.jboss.org/browse/ELY-9
>             Project: WildFly Elytron
>          Issue Type: Sub-task
>      Security Level: Public(Everyone can see) 
>            Reporter: David Lloyd
>             Fix For: 1.0.0.Beta1
>
>
> Most of the UNX crypt-based password types can all be parsed from similar strings.  This password type represents a password in encoded string format.  This allows passwd-style files to be read in and used directly.
> The type of password is derived from the first few characters of the string.
> The PasswordFactory API is used to translate crypt strings to other password and password spec formats.  The Password.getAlgorithm() method should be somehow usable to identify the algorithm of the password string.  This field would be set by the PasswordFactorySpi implementation when importing a CryptStringPasswordSpec object successfully.
> References:
> [http://pythonhosted.org/passlib/modular_crypt_format.html]
> [http://en.wikipedia.org/wiki/Crypt_(C)]



--
This message was sent by Atlassian JIRA
(v6.2.3#6260)