HomeProjectsCustomizationsIntegration of Scheduling component UniTime (University Timetabling) with CAS CampusIssues › Implementing a different Password Handler in CAS

Implementing a different Password Handler in CAS

Submitted by vinaychatra on Thu, 08/26/2010 - 06:20.
Project:Integration of Scheduling component UniTime (University Timetabling) with CAS Campus
Component:Code
Category:task
Priority:normal
Assigned:Unassigned
Status:active
Description

UniTime uses MD5 encoding and finally encodes the byte array in Base64 format. CAS uses a PlainTextPasswordEncoder which does not encode the password. There is another encoder in CAS called DefaultPasswordEncoder. I'm not sure if this encodes the password in the same format as UniTime although it used MD5. So i was thinking if we could add our own password encoder in CAS similar to the one in UniTime.

26 Aug12:54

#1

By sandy

All alternatively consider SHA. In any case the type of encoding should be plugable with the default for CAS left as it is. The key part of integration would be for UniTime to call CAS for the Token and not deal with passwords at all. Decoupling is perhaps an important step towards security.

Copyright 2009 KenElements. Powered by Open Source Software from projects like Apache, Drupal, Linux, MySQL, PHP, JQuery