Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD

com.atlassian.crowd.password.encoder
Class AtlassianSHA1PasswordEncoder

java.lang.Object
  extended by com.atlassian.crowd.password.encoder.AtlassianSHA1PasswordEncoder
All Implemented Interfaces:
InternalPasswordEncoder, PasswordEncoder
public class AtlassianSHA1PasswordEncoder
extends java.lang.Object
implements InternalPasswordEncoder

The Atlassian implementation of the SHA-1 password encoder, based on the OSUser implementation. It uses the Bouncy Castle SHA-512 digest, followed by the commons-codec base64 encoding.

Note: the password String is converted to bytes using the platform encoding, to preserve the same behaviour as OSUser.

Field Summary
static java.lang.String ATLASSIAN_SHA1_KEY
           
 
Constructor Summary
AtlassianSHA1PasswordEncoder()
           
 
Method Summary
 java.lang.String encodePassword(java.lang.String password, java.lang.Object salt)
          This method will handle the hashing of the passed in password param
 java.lang.String getKey()
          The key to define this password encoder
 boolean isPasswordValid(java.lang.String encPass, java.lang.String rawPass, java.lang.Object salt)
          Validates a specified "raw" password against an encoded password.
 
Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
 

Field Detail

ATLASSIAN_SHA1_KEY

public static final java.lang.String ATLASSIAN_SHA1_KEY
See Also:
Constant Field Values
Constructor Detail

AtlassianSHA1PasswordEncoder

public AtlassianSHA1PasswordEncoder()
Method Detail

encodePassword

public java.lang.String encodePassword(java.lang.String password,
                                       java.lang.Object salt)
This method will handle the hashing of the passed in password param

Specified by:
encodePassword in interface PasswordEncoder
Parameters:
password - the password to encrypt
salt - can be null, and is not currently used by the underlying implementation
Returns:
java.util.String the hashed password

isPasswordValid

public boolean isPasswordValid(java.lang.String encPass,
                               java.lang.String rawPass,
                               java.lang.Object salt)
Description copied from interface: PasswordEncoder

Validates a specified "raw" password against an encoded password.

The encoded password should have previously been generated by PasswordEncoder.encodePassword(String, Object). This method will encode the rawPass (using the optional salt), and then compared it with the presented encPass.

For a discussion of salts, please refer to PasswordEncoder.encodePassword(String, Object).

Specified by:
isPasswordValid in interface PasswordEncoder
Parameters:
encPass - a pre-encoded password
rawPass - a raw password to encode and compare against the pre-encoded password
salt - optionally used by the implementation to "salt" the raw password before encoding. A null value is legal.
Returns:
true if the password is valid , false otherwise
See Also:
PasswordEncoder.isPasswordValid(String, String, Object)

getKey

public java.lang.String getKey()
Description copied from interface: PasswordEncoder
The key to define this password encoder

Specified by:
getKey in interface PasswordEncoder
Returns:
Overview  Package   Class  Use  Tree  Deprecated  Index  Help 
 PREV CLASS   NEXT CLASS FRAMES    NO FRAMES    
SUMMARY: NESTED | FIELD | CONSTR | METHOD DETAIL: FIELD | CONSTR | METHOD
Copyright © 2010 Atlassian. All Rights Reserved.