Hello.
I would like to use hashed user passwords but I didn't get the property
with encryption of passwords for userPassword. If you open DIT with Apache
Directory Studio any user from ou=People account's property with the
password you will be able to set a new password with any of the listed
hashing algorithms.
I reviewed src/main/java/org/apache/directory/fortress/core/model/User.java
with these lines but no mentions about hashing.
822 /**
823 * Get the optional password attribute associated for a User.
Note, this value is required before User will pass Fortress
824 * authentication in {@link
org.apache.directory.fortress.core.impl.AccessMgrImpl#createSession(User,
boolean)}.
825 * Even though password is char[] format here it will be stored on
the ldap server (using server-side controls) in configurable and
standard hashed formats.
826 *
827 * @return value maps to 'userPassword' attribute in
'inetOrgPerson' object class.
828 */
829 public String getPassword()
830 {
831 return password;
832 }
--
Regards,
Veniamin
