Paul Grenyer
Reputation: 1843
Spring Security and H2: How to hash passwords
I'm inserting users into a H2 database as follows:
insert into users (id,username,password) VALUES(1,'user','password');
I'm also using spring security. Usually to hash passwords I'd configure Spring like this:
<bean id = "encoder" class = "org.springframework.security.crypto.password.StandardPasswordEncoder"/>
<security:authentication-manager>
<security:authentication-provider user-service-ref="userService">
<security:password-encoder ref="encoder" />-->
</security:authentication-provider>
</security:authentication-man
and put a hash function into the insert statement. The H2 documentation suggests I need to do this:
insert into users (id,username,password) VALUES(1 vg,'user',HASH('SHA256', STRINGTOUTF8('Password'), 1000));
but when I do, the passwords don't seem to match. I expect I'm not configuring something properly, but google isn't helping me.
Upvotes: 0
Views: 1833
Answers (1)
NimChimpsky
Reputation: 47290
Do the convesion in java, using spring
final StandardPasswordEncoder encoder = new StandardPasswordEncoder();
String hashedPassword = encoder.encode(aStringVarOfThePassword);
Upvotes: 1
Related Questions
- How to hash passwords in mysql for spring security compatibility
- Spring Security BASIC auth - matching password hash
- Java - Spring - Basic authentication - How to hash the password defined in application.properties
- Hashing and Salting Passwords with Spring Security 3
- Spring Security - password hashing
- Implementing hash and salt in Spring 3 security
- Salting a password with spring 3 security
- Spring security password hash + salt
- Spring Security 3 Hash Password Encoders
- Spring Security DB Authentication w/Hibernate and hashed passwords?