|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |
java.lang.Object org.springframework.security.crypto.password.StandardPasswordEncoder
public final class StandardPasswordEncoder
A standard PasswordEncoder
implementation that uses SHA-256 hashing with 1024 iterations and a
random 8-byte random salt value. It uses an additional system-wide secret value to provide additional protection.
The digest algorithm is invoked on the concatenated bytes of the salt, secret and password.
Constructor Summary | |
---|---|
StandardPasswordEncoder()
Constructs a standard password encoder with no additional secret value. |
|
StandardPasswordEncoder(CharSequence secret)
Constructs a standard password encoder with a secret value which is also included in the password hash. |
Method Summary | |
---|---|
String |
encode(CharSequence rawPassword)
Encode the raw password. |
boolean |
matches(CharSequence rawPassword,
String encodedPassword)
Verify the encoded password obtained from storage matches the submitted raw password after it too is encoded. |
Methods inherited from class java.lang.Object |
---|
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait |
Constructor Detail |
---|
public StandardPasswordEncoder()
public StandardPasswordEncoder(CharSequence secret)
secret
- the secret key used in the encoding process (should not be shared)Method Detail |
---|
public String encode(CharSequence rawPassword)
PasswordEncoder
encode
in interface PasswordEncoder
public boolean matches(CharSequence rawPassword, String encodedPassword)
PasswordEncoder
matches
in interface PasswordEncoder
rawPassword
- the raw password to encode and matchencodedPassword
- the encoded password from storage to compare with
|
|||||||||
PREV CLASS NEXT CLASS | FRAMES NO FRAMES | ||||||||
SUMMARY: NESTED | FIELD | CONSTR | METHOD | DETAIL: FIELD | CONSTR | METHOD |