cfboom.security.crypto.password.PasswordEncoder
Service interface for encoding passwords. The preferred implementation is {@code BCryptPasswordEncoder}.
Method Summary | |
---|---|
string
|
encode(string rawPassword)
Encode the raw password. |
boolean
|
matches([string rawPassword], [string encodedPassword])
Verify the encoded password obtained from storage matches the submitted raw. |
Method Detail |
---|
Encode the raw password. Generally, a good encoding algorithm applies a SHA-1 or greater hash combined with an 8-byte or greater randomly generated salt.
rawPassword
Verify the encoded password obtained from storage matches the submitted raw password after it too is encoded. Returns true if the passwords match, false if they do not. The stored password itself is never decoded. storage
rawPassword
encodedPassword