Examples of org.apache.shiro.crypto.hash.Sha256Hash

org.apache.shiro.crypto.hash.Sha256Hash
Generates an SHA-256 Hash from a given input source with an optional salt and hash iterations.
See the {@link AbstractHash AbstractHash} parent class JavaDoc for a detailed explanation of Hashingtechniques and how the overloaded constructors function.
JDK Version Note - Attempting to instantiate this class on JREs prior to version 1.4.0 will throw an {@link IllegalStateException IllegalStateException} @author Les Hazlewood @since 0.9

        try {
            conn = ds.getConnection();
            sql = conn.createStatement();
            sql.executeUpdate(
                    "create table users (username varchar(20), password varchar(20), password_salt varchar(20))");
            Sha256Hash sha256Hash = new Sha256Hash(plainTextPassword, salt);
            String password = sha256Hash.toHex();
            sql.executeUpdate("insert into users values ('" + username + "', '" + password + "', '" + salt + "')");
        } catch (SQLException ex) {
            Assert.fail("Exception creating test database");
        } finally {
            JdbcUtils.closeStatement(sql);

View Full Code Here


    public void createUser(String username, String email, String password) {
        User user = new User();
        user.setUsername(username);
        user.setEmail(email);
        user.setPassword( new Sha256Hash(password).toHex() );
        userDAO.createUser( user );
    }

View Full Code Here

    public void updateUser(User user) {
        Assert.isTrue( userId.equals( user.getId() ), "User ID of command must match the user being updated." );
        user.setUsername( getUsername() );
        user.setEmail( getEmail() );
        if( StringUtils.hasText(getPassword()) ) {
            user.setPassword( new Sha256Hash(getPassword()).toHex() );
        }
    }

View Full Code Here

        main.put("credentialsMatcher", "org.apache.shiro.authc.credential.Sha256CredentialsMatcher");
        main.put("iniRealm.credentialsMatcher", "$credentialsMatcher");


        //create a users section - user 'admin', with a Sha256-hashed 'admin' password (hex encoded):
        Ini.Section users = ini.addSection(IniRealm.USERS_SECTION_NAME);
        users.put("admin", new Sha256Hash("secret").toString());


        IniSecurityManagerFactory factory = new IniSecurityManagerFactory(ini);
        SecurityManager sm = factory.getInstance();


        //go ahead and try to log in with the admin user, ensuring the

View Full Code Here

        //password is 'user1' SHA hashed and base64 encoded:
        //The first argument to the hash constructor is the actual value to be hased.  The 2nd is the
        //salt.  In this simple demo scenario, the username and the password are the same, but to clarify the
        //distinction, you would see this in practice:
        //new Sha256Hash( <password>, <username> )
        String query = "insert into users values ('user1', '" + new Sha256Hash("user1", "user1").toBase64() + "' )";
        jdbcTemplate.execute(query);
        log.debug("Created user1.");


        //password is 'user2' SHA hashed and base64 encoded:
        query = "insert into users values ( 'user2', '" + new Sha256Hash("user2", "user2").toBase64() + "' )";
        jdbcTemplate.execute(query);
        log.debug("Created user2.");


        query = "insert into roles values ( 'role1' )";
        jdbcTemplate.execute(query);

View Full Code Here

    {
      final Account account = new Account(username, password, "buddy@waddya.at");
      final RandomNumberGenerator random = new SecureRandomNumberGenerator();


      account.setSalt(random.nextBytes().toBase64());
      account.setPassword(new Sha256Hash(account.getPassword(), account.getSalt(), 1024).toBase64());


      session.save(account);
    }
  }

View Full Code Here


    if (existingAccount == null)
    {
      final RandomNumberGenerator random = new SecureRandomNumberGenerator();
      account.setSalt(random.nextBytes().toBase64());
      account.setPassword(new Sha256Hash(account.getPassword(), account.getSalt(), 1024).toBase64());
    }
    else
    {
      // Don't allow password changes during an account update.
      account.setPassword(existingAccount.getPassword());

View Full Code Here

     * @param loginId
     * @param newPassword
     */
    public static void resetPassword(String loginId, String newPassword) {
        User user = findByLoginId(loginId);
        user.password = new Sha256Hash(newPassword, ByteSource.Util.bytes(user.passwordSalt), 1024)
                .toBase64();
        user.save();
    }

View Full Code Here

     */
    public static String hashedPassword(String plainTextPassword, String passwordSalt) {
        if (plainTextPassword == null  || passwordSalt == null) {
            throw new IllegalArgumentException("Bad password or passwordSalt!");
        }
        return new Sha256Hash(plainTextPassword, ByteSource.Util.bytes(passwordSalt), HASH_ITERATIONS).toBase64();
    }

View Full Code Here


    public void createUser(String username, String email, String password) {
        User user = new User();
        user.setUsername(username);
        user.setEmail(email);
        user.setPassword( new Sha256Hash(password).toHex() );
        userDAO.createUser( user );
    }

View Full Code Here

0 1 2 3

TOP

Related Classes of org.apache.shiro.crypto.hash.Sha256Hash

com.fengjing.framework.shiro.BootstrapDataPopulator

com.piercey.app.framework.DatabaseUtil

com.sandrini.sandelivery.samples.sprhib.dao.BootstrapDataPopulator

com.sandrini.sandelivery.samples.sprhib.service.DefaultUserService

com.sandrini.sandelivery.samples.sprhib.web.EditUserCommand

com.sandrini.sandelivery.service.DefaultUserService

com.sandrini.sandelivery.web.EditUserCommand

com.streamreduce.util.SecurityUtil

controllers.UserApp

models.User

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.