[jboss-jira] [JBoss JIRA] (ELY-1497) Support Modular Crypt Format (MCF) password in Bcrypt mapper

Martin Choma (JIRA) issues at jboss.org
Thu Jan 25 04:22:00 EST 2018 

     [ https://issues.jboss.org/browse/ELY-1497?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Martin Choma updated ELY-1497:
------------------------------
    Description: 
Currently BCrypt mapper for DB realm does not support MCF format passwords (which does not require explicit salt or iterations):
{noformat}
17:42:28,328 ERROR [org.jboss.as.controller.management-operation] (ServerService Thread Pool -- 3) WFLYCTL0013: Operation ("add") failed - address: ([
    ("subsystem" => "elytron"),
    ("jdbc-realm" => "DatabaseRealm")
]) - failure description: "WFLYCTL0155: 'salt-index' may not be null"
{noformat}
Support should be added to support MCF password so only single column needed in DB.

Logic:
{code}
if (password && !salt && !iterations)
   assume MCF format password
else if (password && salt && iterations)
  assume BCrypt (b64) password, etc
else
  error
{code}

  was:
Currently BCrypt mapper for DB realm does not support MCF format passwords (which does not require explicit salt or iterations):

17:42:28,328 ERROR [org.jboss.as.controller.management-operation] (ServerService Thread Pool -- 3) WFLYCTL0013: Operation ("add") failed - address: ([
    ("subsystem" => "elytron"),
    ("jdbc-realm" => "DatabaseRealm")
]) - failure description: "WFLYCTL0155: 'salt-index' may not be null"

Support should be added to support MCF password so only single column needed in DB.

Logic:

if (password && !salt && !iterations)
   assume MCF format password
else if (password && salt && iterations)
  assume BCrypt (b64) password, etc
else
  error




> Support Modular Crypt Format (MCF) password in Bcrypt mapper
> ------------------------------------------------------------
>
>                 Key: ELY-1497
>                 URL: https://issues.jboss.org/browse/ELY-1497
>             Project: WildFly Elytron
>          Issue Type: Enhancement
>          Components: Passwords
>    Affects Versions: 1.1.7.Final
>            Reporter: Tom Stiemerling
>
> Currently BCrypt mapper for DB realm does not support MCF format passwords (which does not require explicit salt or iterations):
> {noformat}
> 17:42:28,328 ERROR [org.jboss.as.controller.management-operation] (ServerService Thread Pool -- 3) WFLYCTL0013: Operation ("add") failed - address: ([
>     ("subsystem" => "elytron"),
>     ("jdbc-realm" => "DatabaseRealm")
> ]) - failure description: "WFLYCTL0155: 'salt-index' may not be null"
> {noformat}
> Support should be added to support MCF password so only single column needed in DB.
> Logic:
> {code}
> if (password && !salt && !iterations)
>    assume MCF format password
> else if (password && salt && iterations)
>   assume BCrypt (b64) password, etc
> else
>   error
> {code}



--
This message was sent by Atlassian JIRA
(v7.5.0#75005)

More information about the jboss-jira mailing list