shiro-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Kalle Korhonen <kalle.o.korho...@gmail.com>
Subject Re: Password hashing - getting the salt from AuthenticationInfo
Date Thu, 21 Oct 2010 22:45:16 GMT
Hmm.. that's the rememberMe cookie - shouldn't have anything to do
with password salting?

Kalle


On Thu, Oct 21, 2010 at 3:38 PM, Mike K <mkogan@semanticresearch.com> wrote:
>
> Les, it is not yet exactly working. I am seeing a problem with the source I
> pulled yesterday - the cookie expires immediately:
>
> SESSIONID=61112b06-04f5-4e7c-af87-b84c3901d4af; Path=/service; Max-Age=-1;
> HttpOnly rememberMe=deleteMe; Path=/service; Max-Age=0; Expires=Wed,
> 20-Oct-2010 22:30:21 GMT
>
> Is there new configuration that I am missing or is this a bug?
>
> Another question, how do you ensure that the matcher knows that the string
> representing the salt is base64?
>
>
>
> --
> View this message in context: http://shiro-developer.582600.n2.nabble.com/Password-hashing-getting-the-salt-from-AuthenticationInfo-tp5653460p5660670.html
> Sent from the Shiro Developer mailing list archive at Nabble.com.
>

Mime
View raw message