Password algorithm question

Fórum

N M, modificado 7 Anos atrás.

Password algorithm question

Junior Member Postagens: 27 Data de Entrada: 24/02/11 Postagens Recentes

Couple of months back we upgraded from Liferay 6.1 to 6.2, and due to some reason decided to keep the old password algorithm (SHA) at that time. We are now looking at migrating the algorithm to PBKDF2. Can this be done as an independent task if not part of upgrade? Any pointers on what steps would be needed, if anyone has tried this? Would it be sufficient to update the portal-ext.properties with passwords.encryption.algorithm.legacy=SHA and Liferay would know to store the password in new algorithm next time the user logs in?

David H Nebinger, modificado 7 Anos atrás.

RE: Password algorithm question

Liferay Legend Postagens: 14919 Data de Entrada: 02/09/06 Postagens Recentes

IIRC if you change the format in portal-ext.properties it will change when the user logs in. I would definitely set the legacy property so there's no ambiguity of what format the password was in.

Come meet me at the NAS!

Samuel Kong, modificado 7 Anos atrás.

RE: Password algorithm question

Liferay Legend Postagens: 1902 Data de Entrada: 10/03/08 Postagens Recentes

You should set passwords.encryption.algorithm.legacy to the old algorithm and set passwords.encryption.algorithm to your new algorithm. Liferay will only update the password if the user sets a new password. You can select the the "Password Reset Required" flag if you want to force users to change their password.