- All Implemented Interfaces:
This class implements the logic for comparing passwords against password hashes, or computing a new password hash for a password.
One or more hash functions can be added, which allow you to introduce a new "preferred" hash function while maintaining support for verifying existing passwords hashes.
Method SummaryModifier and TypeMethodDescription
voidAdds a hash function.Returns the list of hash functions.Computes the password hash for a clear text password.
booleanReturns whether a password hash needs to be updated (recomputed).
booleanVerifies a password against a hash.
addHashFunctionpublic void addHashFunction
(HashFunction function)Adds a hash function.
The first hash function added is the one that will be used for creating new password hashes, i.e. the "preferred" hash function. The other hash functions are used only for verifying existing hash passwords. This allows you to move to new hash functions as other ones are no longer deemed secure.
Each hash function has a unique name, which is annotated in the generated hash to identify the appropriate hash funtion to evaluate it.
Ownership of the hash functions is transferred.
- See Also:
getHashFunctionsReturns the list of hash functions.
This returns a list with references to hashfunctions that have been added with
needsUpdatepublic boolean needsUpdate
(PasswordHash hash)Description copied from interface:
PasswordService.AbstractVerifierReturns whether a password hash needs to be updated (recomputed).
hashmay need to be updated if it has been computed with a cryptographic method that is being disfavoured.
hashPasswordComputes the password hash for a clear text password.
This creates new salt and applies the "preferred" hash function to the salt and clear text password to compute the hash.
verifyVerifies a password against a hash.
This verifies whether the password matches the hash.