[
https://issues.apache.org/jira/browse/OFBIZ-8537?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15712382#comment-15712382 ]
Shi Jinghai commented on OFBIZ-8537:
------------------------------------
Thank you Junyuan for this fuction! (谢谢王军元!)
Well done!
It would be better if the following errors be corrected:
1. I have to remove the first 2 lines of the patch to apply it in my local environment as my project is not named as "trunk"
2. the getIterations() should be removed, simply using this line would be ok:
private static final int PBKDF2_Iterations = UtilProperties.getPropertyAsInteger("security.properties", "password.encrypt.pbkdf2.iterations", 1000);
3. change PBKDF2_SHA1 and other variables from public to private.
4. remove TODOs.
5. change flexadmin's password from 'admin' to our brand 'ofbiz' :)
Please DO submit a new patch tomorrow. Thanks again!
> LoginWorker HashCrypt the type of hash for one-way encryption
> -------------------------------------------------------------
>
> Key: OFBIZ-8537
> URL:
https://issues.apache.org/jira/browse/OFBIZ-8537> Project: OFBiz
> Issue Type: New Feature
> Components: framework
> Affects Versions: Trunk
> Reporter: wangjunyuan
> Assignee: Shi Jinghai
> Priority: Minor
> Labels: HashCrypt, PBKDF2, security.properties
> Attachments: HashCrypt.patch
>
>
> PBKDF2 (Password-Based Key Derivation Function 2) is part of RSA Laboratories' Public-Key Cryptography Standards (PKCS) series, specifically PKCS #5 v2.0, also published as Internet Engineering Task Force's RFC 2898. It replaces an earlier key derivation function, PBKDF1, which could only produce derived keys up to 160 bits long.Add this function to ofbiz ,this PBKDF2 has four types in Java:'PBKDF2WithHmacSHA1','PBKDF2WithHmacSHA256','PBKDF2WithHmacSHA384','PBKDF2WithHmacSHA512'
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
Locked
