[jboss-jira] [JBoss JIRA] (WFCORE-2541) CS, MASK-password must support same MASKED string without SALT and ITERATION as old vaults system.
Hynek Švábek (JIRA)
issues at jboss.org
Wed Mar 15 07:03:01 EDT 2017
Hynek Švábek created WFCORE-2541:
------------------------------------
Summary: CS, MASK-password must support same MASKED string without SALT and ITERATION as old vaults system.
Key: WFCORE-2541
URL: https://issues.jboss.org/browse/WFCORE-2541
Project: WildFly Core
Issue Type: Bug
Components: Security
Reporter: Hynek Švábek
Assignee: Darran Lofthouse
MASK-password must support same MASKED string without SALT and ITERATION as old vaults system.
MASKED password in Elytron has this format
{code}
MASK-KAwLfD1BN8WFhZptWsa17G==;12345678;230
{code}
But old vault system has SALT and ITERATION as global parameters for all MASK-strings same.
And you have this format of MASKED password
{code}
MASK-KAwLfD1BN8WFhZptWsa17G==
{code}
It would be better add there original approach too because of migration...
Please add there this default option:
* set SALT and ITERATION default values for using of credential stores. If will be defined MASK-string without SALT and ITERATION then will be used these values.
* if you use MASK-string;SALT;ITERATION form, then will be used SALT and ITERATION from this.
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list