lucene-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "chenmin (JIRA)" <j...@apache.org>
Subject [jira] [Created] (SOLR-11279) It is necessary to specify how to generate a password when used Basic Authentication!
Date Wed, 23 Aug 2017 01:55:00 GMT
chenmin created SOLR-11279:
------------------------------

             Summary: It is necessary to specify how to generate a password when used  Basic
Authentication!
                 Key: SOLR-11279
                 URL: https://issues.apache.org/jira/browse/SOLR-11279
             Project: Solr
          Issue Type: Improvement
      Security Level: Public (Default Security Level. Issues are Public)
    Affects Versions: 5.3.1
            Reporter: chenmin



         Follow the documentation ,"Usernames and passwords (as a sha256(password+salt) hash)
could be added when the file is created.

         Actually, I do not know how to generate a password.
         Finding code as:

          public static String getSaltedHashedValue(String pwd) {
                 final Random r = new SecureRandom();
                 byte[] salt = new byte[32];
                 r.nextBytes(salt);
                 String saltBase64 = Base64.encodeBase64String(salt);
                 String val = sha256(pwd, saltBase64) + " " + saltBase64;
                 return val;
          }

         I  think we shoud give an example to generate password in ref guide! 



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org


Mime
View raw message