cfboom.security.crypto.password

Interface PasswordEncoder

cfboom.security.crypto.password.PasswordEncoder
All Known Implementing Classes:
BCryptPasswordEncoder

Service interface for encoding passwords. The preferred implementation is {@code BCryptPasswordEncoder}.

Class Attributes:
  • displayname : Interface PasswordEncoder
  •  
  • author : Keith Donald
  •  
    Method Summary
    string encode(string rawPassword)
         Encode the raw password.
    boolean matches([string rawPassword], [string encodedPassword])
         Verify the encoded password obtained from storage matches the submitted raw.

    Method Detail

    encode

    public string encode(string rawPassword)

    Encode the raw password. Generally, a good encoding algorithm applies a SHA-1 or greater hash combined with an 8-byte or greater randomly generated salt.

    Parameters:
    rawPassword

    matches

    public boolean matches([string rawPassword], [string encodedPassword])

    Verify the encoded password obtained from storage matches the submitted raw password after it too is encoded. Returns true if the passwords match, false if they do not. The stored password itself is never decoded. storage

    Parameters:
    rawPassword
    encodedPassword
    Returns:
    true if the raw password, after encoding, matches the encoded password from