Return-Path: Delivered-To: apmail-incubator-clerezza-dev-archive@minotaur.apache.org Received: (qmail 61797 invoked from network); 21 Feb 2011 10:07:05 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.3) by minotaur.apache.org with SMTP; 21 Feb 2011 10:07:05 -0000 Received: (qmail 75314 invoked by uid 500); 21 Feb 2011 10:07:05 -0000 Delivered-To: apmail-incubator-clerezza-dev-archive@incubator.apache.org Received: (qmail 75249 invoked by uid 500); 21 Feb 2011 10:07:03 -0000 Mailing-List: contact clerezza-dev-help@incubator.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: clerezza-dev@incubator.apache.org Delivered-To: mailing list clerezza-dev@incubator.apache.org Received: (qmail 75233 invoked by uid 99); 21 Feb 2011 10:07:01 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 21 Feb 2011 10:07:01 +0000 X-ASF-Spam-Status: No, hits=-2000.0 required=5.0 tests=ALL_TRUSTED,T_RP_MATCHES_RCVD X-Spam-Check-By: apache.org Received: from [140.211.11.116] (HELO hel.zones.apache.org) (140.211.11.116) by apache.org (qpsmtpd/0.29) with ESMTP; Mon, 21 Feb 2011 10:06:59 +0000 Received: from hel.zones.apache.org (hel.zones.apache.org [140.211.11.116]) by hel.zones.apache.org (Postfix) with ESMTP id 87F511AF611 for ; Mon, 21 Feb 2011 10:06:38 +0000 (UTC) Date: Mon, 21 Feb 2011 10:06:38 +0000 (UTC) From: =?utf-8?Q?Reto_Bachmann-Gm=C3=BCr_=28JIRA=29?= To: clerezza-dev@incubator.apache.org Message-ID: <697138831.5489.1298282798553.JavaMail.tomcat@hel.zones.apache.org> In-Reply-To: <1272534912.14877.1297695537570.JavaMail.tomcat@hel.zones.apache.org> Subject: [jira] Closed: (CLEREZZA-421) Support for multiple user password encryptions MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: quoted-printable X-JIRA-FingerPrint: 30527f35849b9dde25b450d4833f0394 X-Virus-Checked: Checked by ClamAV on apache.org [ https://issues.apache.org/jira/browse/CLEREZZA-421?page=3Dcom.atlass= ian.jira.plugin.system.issuetabpanels:all-tabpanel ] Reto Bachmann-Gm=C3=BCr closed CLEREZZA-421. --------------------------------------- Resolution: Fixed Thanks Daniel for the very good patch > Support for multiple user password encryptions > ---------------------------------------------- > > Key: CLEREZZA-421 > URL: https://issues.apache.org/jira/browse/CLEREZZA-421 > Project: Clerezza > Issue Type: New Feature > Reporter: Daniel Spicar > Assignee: Reto Bachmann-Gm=C3=BCr > Attachments: patch-CLEREZZA-421.diff > > > We have an issue when we import users from a different system to clerezza= . The users have passwords encrypted in SSHA (not SHA-1 as clerezza uses). = We do not have their clear-text passwords. > Now I wonder how would you best enable clerezza to support logins with di= fferent password encoding methods. Most likely a single user will only use = one encoding but different users can have different encodings.=20 > I have seen you have WeightedAutenicationMethod services. But if I interp= ret this correctly it won't solve my issue. I assume I am looking for a way= to register multiple AutenticationChecker services such that passwords can= be checked against more than one of them. I don't see this implemented so = far. > Some questions with this would be: > - do we simply add new properties for differently encoded passwords (pass= wordSsha, passwordSha1, ...) or do we change the ontology so a password res= ource contains both, the encrypted string as a literal and a uri designatin= g the password encoding method? > - can the user have more than one such password resources (the password e= ncoded in multiple encryption methods)? > - how to update user passwords? (e.g. delete all passwords and add a new = one in the default encoding of the platform)=20 > I could provide a patch for this issue but we should define how we want t= o resolve it first. --=20 This message is automatically generated by JIRA. - For more information on JIRA, see: http://www.atlassian.com/software/jira