New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[WFCORE-3541] ScramDigestPassword into set-password operation #3066
Conversation
Core - Full Integration Build 6517 outcome was FAILURE using a merge of eaa64fc Failed tests
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
@hkalina Looks ok from a management point of view, but please get someone from the security team to approve as well.
@darranl can you approve this? |
static class ScramDigest { | ||
static final SimpleAttributeDefinition ALGORITHM = new SimpleAttributeDefinitionBuilder(ElytronDescriptionConstants.ALGORITHM, ModelType.STRING) | ||
.setRequired(false) | ||
.setDefaultValue(new ModelNode(ScramDigestPassword.ALGORITHM_SCRAM_SHA_1)) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It would be good to use a stronger hash function by default. It looks like SHA-512 is being used for the defaults for other password types.
@fjuma updated |
Elytron security:
Adding scram password support into set-password operation of modifiable security realms.
https://issues.jboss.org/browse/WFCORE-3541