Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Already on GitHub? Sign in to your account

SEC-1688: Allow injection of PasswordEncoder from crypto module into DaoAuthenticationProvider #1926

spring-issuemaster opened this Issue Mar 2, 2011 · 1 comment


None yet
1 participant

Luke Taylor (Migrated from SEC-1688) said:

Ultimately, we will deprecate the use of a SaltSource in favour of random salt and the simpler PasswordEncoder interface. With this in mind, we need to allow injection of the latter into DaoAuthenticationProvider. This will require that the core classes depend on the crypto module.

Luke Taylor said:

The class now takes either type via the setPasswordEncoder. It uses an adapter to convert the crypto version to one of the former encoders.

@spring-issuemaster spring-issuemaster added this to the 3.1.0.RC2 milestone Feb 5, 2016

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment