SEC-2564: Deprecate all salted digest password encoding #2776

spring-projects-issues · 2014-04-18T06:25:50Z

Rob Winch (Migrated from SEC-2564) said:

We should do this to indicate to users that these password storage mechanisms are no longer considered secure. We should also remove these references from the manual.

Issue: gh-2776

Issue: spring-projectsgh-2776

spring-projects-issues added Open type: jira An issue that was migrated from JIRA labels Feb 5, 2016

spring-projects-issues mentioned this issue Oct 20, 2017

SEC-2562: Modernize Password Storage #2774

Open

9 tasks

rwinch added a commit that referenced this issue Oct 24, 2017

Deprecate NoOpPasswordEncoder

a0e9eb3

Issue: gh-2776

rwinch added a commit that referenced this issue Oct 24, 2017

Deprecate StandardPasswordEncoder

7b282b5

Issue: gh-2776

rwinch self-assigned this Oct 24, 2017

rwinch added this to the 5.0.0.RC1 milestone Oct 24, 2017

rwinch closed this as completed Oct 24, 2017

thomasdarimont pushed a commit to thomasdarimont/spring-security that referenced this issue Apr 25, 2018

Deprecate NoOpPasswordEncoder

7dc0324

Issue: spring-projectsgh-2776

thomasdarimont pushed a commit to thomasdarimont/spring-security that referenced this issue Apr 25, 2018

Deprecate StandardPasswordEncoder

12f9f4a

Issue: spring-projectsgh-2776

eleftherias mentioned this issue Oct 23, 2019

SEC-1982: Hashing documentation updates #2206

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SEC-2564: Deprecate all salted digest password encoding #2776

SEC-2564: Deprecate all salted digest password encoding #2776

spring-projects-issues commented Apr 18, 2014

SEC-2564: Deprecate all salted digest password encoding #2776

SEC-2564: Deprecate all salted digest password encoding #2776

Comments

spring-projects-issues commented Apr 18, 2014