org.springframework.security.authentication.dao

Class SystemWideSaltSource

java.lang.Object

org.springframework.security.authentication.dao.SystemWideSaltSource

All Implemented Interfaces:

InitializingBean, SaltSource

public class SystemWideSaltSource
extends Object
implements SaltSource, InitializingBean

Uses a static system-wide String as the salt.

Does not supply a different salt for each User. This means users sharing the same password will still have the same digested password. Of benefit is the digested passwords will at least be more protected than if stored without any salt.

Constructor Summary

Constructors

Constructor and Description
SystemWideSaltSource()

Method Summary

Modifier and Type	Method and Description
void	afterPropertiesSet()
Object	getSalt(UserDetails user) Returns the salt to use for the indicated user.
String	getSystemWideSalt()
void	setSystemWideSalt(String systemWideSalt)
String	toString() Displays the system wide salt

Methods inherited from class java.lang.Object

clone, equals, finalize, getClass, hashCode, notify, notifyAll, wait, wait, wait

Constructor Detail

SystemWideSaltSource

public SystemWideSaltSource()

Method Detail

afterPropertiesSet

public void afterPropertiesSet()
                        throws Exception

Specified by:

afterPropertiesSet in interface InitializingBean

Throws:

Exception

getSalt

public Object getSalt(UserDetails user)

Description copied from interface: SaltSource

Returns the salt to use for the indicated user.

Specified by:

getSalt in interface SaltSource

Parameters:

user - from the AuthenticationDao

Returns:

the salt to use for this UserDetails

getSystemWideSalt

public String getSystemWideSalt()

setSystemWideSalt

public void setSystemWideSalt(String systemWideSalt)

toString

public String toString()

Displays the system wide salt

Overrides:

toString in class Object

Returns:

Since:

4.0