Menu
▾
▴
Re: [Unity-idm-discuss] password storage scheme
|
From: Krzysztof B. <kb...@un...> - 2018-08-03 16:24:19
|
Hi Fabian, W dniu 02.08.2018 o 15:41, Fabian Mangels pisze: > > Hi Krzysztof, > > I have another question. > Is it possible to change the hash function for the locally stored > password? > At the moment the default password storage scheme is SCRYPT. I would > like to use SSHA. > The background is that I use the REST interface to get user accounts > and then I would like to add them to an LDAP directory (OpenLDAP). > Thanks in advance! Well, you can plug your own storage of password, however this is rather low level development in Unity. You would need to either replace unity-std-plugins with your patched implementation or (much better IMO) add a new credential type, which will be the same as existing password (also compatible with existing password retrieval methods) but will use the desired storage scheme. E.g. password-ssha. This 2nd variant is cleaner but requires much work as you will have to provide UI plugins for new credential type (those would be very similar if not the same as the ones for password, but anyway). You can see how the core part can be done in pl.edu.icm.unity.stdext.credential.pass.PasswordEngine class in the unity-std-plugins module. HTH, Krzysztof |
