lasdf1234 opened a new pull request, #10968:
URL: https://github.com/apache/gravitino/pull/10968
### What changes were proposed in this pull request?
This PR adds password hashing support for the local authentication module.
The changes include:
- adding the `argon2-jvm` dependency for the `authenticator-basic` module
- introducing the `PasswordHasher` abstraction
- adding `Argon2idPasswordHasher` as the only built-in password hashing
implementation
- adding `PasswordHasherFactory` to create the built-in hasher
- adding tests to verify Argon2id PHC-style hash generation and password
verification
### Why are the changes needed?
Local authentication needs a secure password hashing mechanism before user
credentials can be persisted and verified safely. This PR implements the
password hashing part of the design by using Argon2id as the only supported
algorithm, aligned with the design document.
Fix: #10961
### Does this PR introduce _any_ user-facing change?
Yes.
- local authentication password hashing support is added
- Argon2id becomes the built-in password hashing algorithm for the local
authenticator
### How was this patch tested?
- added `TestArgon2idPasswordHasher`
- ran:
- `./gradlew --no-daemon :authenticators:authenticator-basic:test --tests
org.apache.gravitino.auth.local.TestArgon2idPasswordHasher`
- `./gradlew --no-daemon classes testClasses`
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
