Tree: 7974f3161d

1.0.x

2.0.x

3.0.x

3.1.x

3.2.x

4.0.x

4.1.x

4.2.x

5.0.x

5.1.x

5.2.x

5.3.x

5.4.x

5.5.x

5.6.x

5.7.x

5.8.x

5.8.x_update-antora-ui-spring

6.0.x

6.1.x

6.2.x

6.2.x_update-antora-ui-spring

6.3.x

6.3.x_update-antora-ui-spring

6.4.x

6.5.x

7.0.x

dependabot/gradle/main/org.springframework.data-spring-data-bom-2025.1.0-SNAPSHOT

dependencies-typo-6.5.x

dependencies-typo-main

docs-build

finalize

gh-16886

gh-pages

kotlin22

main

wrapperbot/spring-security/gradle-wrapper-8.10

wrapperbot/spring-security/gradle-wrapper-8.10.1

wrapperbot/spring-security/gradle-wrapper-8.10.2

wrapperbot/spring-security/gradle-wrapper-8.11

wrapperbot/spring-security/gradle-wrapper-8.11.1

wrapperbot/spring-security/gradle-wrapper-8.12

wrapperbot/spring-security/gradle-wrapper-8.12.1

wrapperbot/spring-security/gradle-wrapper-8.13

wrapperbot/spring-security/gradle-wrapper-8.14

wrapperbot/spring-security/gradle-wrapper-8.9

1.0.0

1.0.1

1.0.2

1.0.3

1.0.4

1.0.5

1.0.6

1.0.7

2.0.0

2.0.0.M1

2.0.0.M2

2.0.0.RC1

2.0.1

2.0.2

2.0.3

2.0.4

2.0.5.RELEASE

2.0.6.RELEASE

2.0.7.RELEASE

2.0.8.RELEASE

2.5.0.M1

3.0.0.M1

3.0.0.M2

3.0.0.RC1

3.0.0.RC2

3.0.0.RELEASE

3.0.1.RELEASE

3.0.2.RELEASE

3.0.3.RELEASE

3.0.4.RELEASE

3.0.5.RELEASE

3.0.6.RELEASE

3.0.7.RELEASE

3.0.8.RELEASE

3.1.0.M1

3.1.0.M2

3.1.0.RC1

3.1.0.RC2

3.1.0.RC3

3.1.0.RELEASE

3.1.1.RELEASE

3.1.2.RELEASE

3.1.3.RELEASE

3.1.4.RELEASE

3.1.5.RELEASE

3.1.6.RELEASE

3.1.7.RELEASE

3.2.0.M1

3.2.0.M2

3.2.0.RC1

3.2.0.RC2

3.2.0.RELEASE

3.2.1.RELEASE

3.2.10.RELEASE

3.2.2.RELEASE

3.2.3.RELEASE

3.2.4.RELEASE

3.2.5.RELEASE

3.2.6.RELEASE

3.2.7.RELEASE

3.2.8.RELEASE

3.2.9.RELEASE

4.0.0.M1

4.0.0.M2

4.0.0.RC1

4.0.0.RC2

4.0.0.RELEASE

4.0.1.RELEASE

4.0.2.RELEASE

4.0.3.RELEASE

4.0.4.RELEASE

4.1.0.RC1

4.1.0.RC2

4.1.0.RELEASE

4.1.1.RELEASE

4.1.2.RELEASE

4.1.3.RELEASE

4.1.4.RELEASE

4.1.5.RELEASE

4.2.0.M1

4.2.0.RC1

4.2.0.RELEASE

4.2.1.RELEASE

4.2.10.RELEASE

4.2.11.RELEASE

4.2.12.RELEASE

4.2.13.RELEASE

4.2.14.RELEASE

4.2.15.RELEASE

4.2.16.RELEASE

4.2.17.RELEASE

4.2.18.RELEASE

4.2.19.RELEASE

4.2.2.RELEASE

4.2.20.RELEASE

4.2.3.RELEASE

4.2.4.RELEASE

4.2.5.RELEASE

4.2.6.RELEASE

4.2.7.RELEASE

4.2.8.RELEASE

4.2.9.RELEASE

5.0.0.M1

5.0.0.M2

5.0.0.M3

5.0.0.M4

5.0.0.M5

5.0.0.RC1

5.0.0.RELEASE

5.0.1.RELEASE

5.0.10.RELEASE

5.0.11.RELEASE

5.0.12.RELEASE

5.0.13.RELEASE

5.0.14.RELEASE

5.0.15.RELEASE

5.0.16.RELEASE

5.0.17.RELEASE

5.0.18.RELEASE

5.0.19.RELEASE

5.0.2.RELEASE

5.0.3.RELEASE

5.0.4.RELEASE

5.0.5.RELEASE

5.0.6.RELEASE

5.0.7.RELEASE

5.0.8.RELEASE

5.0.9.RELEASE

5.1.0.M1

5.1.0.M2

5.1.0.RC1

5.1.0.RC2

5.1.0.RELEASE

5.1.1.RELEASE

5.1.10.RELEASE

5.1.11.RELEASE

5.1.12.RELEASE

5.1.13.RELEASE

5.1.2.RELEASE

5.1.3.RELEASE

5.1.4.RELEASE

5.1.5.RELEASE

5.1.6.RELEASE

5.1.7.RELEASE

5.1.8.RELEASE

5.1.9.RELEASE

5.2.0.M1

5.2.0.M2

5.2.0.M3

5.2.0.M4

5.2.0.RC1

5.2.0.RELEASE

5.2.1.RELEASE

5.2.10.RELEASE

5.2.11.RELEASE

5.2.12.RELEASE

5.2.13.RELEASE

5.2.14.RELEASE

5.2.15.RELEASE

5.2.2.RELEASE

5.2.3.RELEASE

5.2.4.RELEASE

5.2.5.RELEASE

5.2.6.RELEASE

5.2.7.RELEASE

5.2.8.RELEASE

5.2.9.RELEASE

5.3.0.M1

5.3.0.RC1

5.3.0.RELEASE

5.3.1.RELEASE

5.3.10.RELEASE

5.3.11.RELEASE

5.3.12.RELEASE

5.3.13.RELEASE

5.3.2.RELEASE

5.3.3.RELEASE

5.3.4.RELEASE

5.3.5.RELEASE

5.3.6.RELEASE

5.3.7.RELEASE

5.3.8.RELEASE

5.3.9.RELEASE

5.4.0

5.4.0-M1

5.4.0-M2

5.4.0-RC1

5.4.1

5.4.10

5.4.11

5.4.2

5.4.3

5.4.4

5.4.5

5.4.6

5.4.7

5.4.8

5.4.9

5.5.0

5.5.0-M1

5.5.0-M2

5.5.0-M3

5.5.0-RC1

5.5.0-RC2

5.5.1

5.5.2

5.5.3

5.5.4

5.5.5

5.5.6

5.5.7

5.5.8

5.6.0

5.6.0-M1

5.6.0-M2

5.6.0-M3

5.6.0-RC1

5.6.1

5.6.10

5.6.11

5.6.12

5.6.2

5.6.3

5.6.4

5.6.5

5.6.6

5.6.7

5.6.8

5.6.9

5.7.0

5.7.0-M1

5.7.0-M2

5.7.0-M3

5.7.0-RC1

5.7.1

5.7.10

5.7.11

5.7.12

5.7.13

5.7.14

5.7.2

5.7.3

5.7.4

5.7.5

5.7.6

5.7.7

5.7.8

5.7.9

5.8.0

5.8.0-M1

5.8.0-M2

5.8.0-M3

5.8.0-RC1

5.8.1

5.8.10

5.8.11

5.8.12

5.8.13

5.8.14

5.8.15

5.8.16

5.8.2

5.8.3

5.8.4

5.8.5

5.8.6

5.8.7

5.8.8

5.8.9

6.0.0

6.0.0-M1

6.0.0-M2

6.0.0-M3

6.0.0-M4

6.0.0-M5

6.0.0-M6

6.0.0-M7

6.0.0-RC1

6.0.0-RC2

6.0.1

6.0.2

6.0.3

6.0.4

6.0.5

6.0.6

6.0.7

6.0.8

6.1.0

6.1.0-M1

6.1.0-M2

6.1.0-RC1

6.1.1

6.1.2

6.1.3

6.1.4

6.1.5

6.1.6

6.1.7

6.1.8

6.1.9

6.2.0

6.2.0-M1

6.2.0-M2

6.2.0-M3

6.2.0-RC1

6.2.0-RC2

6.2.1

6.2.2

6.2.3

6.2.4

6.2.5

6.2.6

6.2.7

6.2.8

6.3.0

6.3.0-M1

6.3.0-M2

6.3.0-M3

6.3.0-RC1

6.3.1

6.3.10

6.3.2

6.3.3

6.3.4

6.3.5

6.3.6

6.3.7

6.3.8

6.3.9

6.4.0

6.4.0-M1

6.4.0-M2

6.4.0-M3

6.4.0-M4

6.4.0-RC1

6.4.1

6.4.10

6.4.11

6.4.12

6.4.13

6.4.2

6.4.3

6.4.4

6.4.5

6.4.6

6.4.7

6.4.8

6.4.9

6.5.0

6.5.0-M1

6.5.0-M2

6.5.0-M3

6.5.0-RC1

6.5.1

6.5.2

6.5.3

6.5.4

6.5.5

6.5.6

6.5.7

7.0.0

7.0.0-M1

7.0.0-M2

7.0.0-M3

7.0.0-RC1

7.0.0-RC2

7.0.0-RC3

7.0.1

7.0.2

7.1.0-M1

Branches Tags

${ item.name }

Create tag ${ searchTerm }

Create branch ${ searchTerm }

from '7974f3161d'

${ noResults }

Commit Graph

46 Commits (7974f3161dd80b3752eae49fed7f33cdc41b0da9)

Author	SHA1	Message	Date
Rob Winch	0f612bf637	Add crypto PasswordEncoder from 5.0.x ... Fixes: gh-5302	8 years ago
Antoine	21efbb6ba7	Polish AssertJ assertions ... Fixes gh-4770	8 years ago
Joris Portegies Zwart	d48079eb19	JavaDoc for Pbkdf2PasswordEncoder refer to constants ... Fix Javadoc so that it uses the actual values for default hash width and number of iterations Fixes gh-4768	8 years ago
SendilKumar N	c31bdb6390	SCryptPasswordEncoder to take default keyLength value ... Fixes gh-4225 Closes gh-4231	9 years ago
Rob Winch	bb834bccf6	Polish Exception Message ... Polish Exception message for bad salt in BCrypt Issue gh-4147	9 years ago
Jan Brennenstuhl	09436649cc	handling null-values for salts properly now - fixes gh-4147	9 years ago
Kazuki Shimizu	a1f771251a	Improve exception message on Hex#decode ... Fixes gh-4043	10 years ago
Rob Winch	8f880aea0e	Polish Pbkdf2PasswordEncoder ... Issue gh-3930	10 years ago
vitaliy_kuzmich	5f658b3ffc	Remove double salt in Pbkdf2PasswordEncoder ... Issue gh-3930	10 years ago
Eddú Meléndez	a2ead4cf7a	Polish ... Fixes gh-3892	10 years ago
Kim Saabye Pedersen	9fcfeaf225	BCryptPasswordEncoder validates strength ... Fixes gh-3862	10 years ago
Will Tran	b01437281d	Bouncy Castle 1.47 Support ... This forces us to avoid using CipherOutputStream, and instead use the BlockCiphers directly. As an extra measure for correctness, test the equivalence of the BC implementations against data sizes from 1 to 2048 bytes. Fixes gh-2917	10 years ago
Will Tran	44fa624b6b	Refactor test assumptions about JCE to common class. (#3817) ... Apply assumptions directly to test methods instead of checking for key length in crypto.gradle.	10 years ago
Will Tran	40208127e8	Skip tests when AesBytesEncryptor can't be created in CBC or GCM mode. (#3816) ... Tests would fail in cases where JCE unlimited strength was available but GCM wasn't, like on JDK7.	10 years ago
Will Tran	63b2cfe1cf	Bouncy Castle implementations of AES-256 ... Adds "AES/CBC/PKCS5Padding" and "AES/GCM/NoPadding" Fixes gh-2917	10 years ago
Rob Winch	95a3e30d9f	Polish Pbkdf2PasswordEncoder ... Fixes gh-2158 Fixes gh-51	10 years ago
Rob Worsnop	0ab7126e64	Added PBKDF2PasswordEncoder. ... - Also moved some logic into a new class, AbstractPasswordEncoder. Both PBKDF2PasswordEncoder and the now-simplified StandardPasswordEncoder extend AbstractPasswordEncoder. - Added tests for PBKDF2PasswordEncoder Issue gh-2158	10 years ago
Rob Winch	f221920a19	Clean up code to conform to basic checkstyle ... Issue gh-3746	10 years ago
Billy Korando	71d4ce96ad	Convert to assertj ... Fixes gh-3175	10 years ago
Rob Winch	bb600a473e	Start AssertJ Migration ... Issue gh-3175	10 years ago
Rob Winch	8fbc7e0d2c	Fix SCryptPasswordEncoder javadoc ... Issue gh-3702	10 years ago
Rob Winch	fc75a679d9	Polish SCryptPasswordEncoder ... * JKD8 Base64 -> Spring Security's Base64 to continue to support older JDKs * Spaces to tabs * Javadoc cleanup * Remove of @Override to compile in Eclipse Issue gh-3702	10 years ago
Shazin	7d02e259df	Add SCryptPasswordEncoder ... Fixes gh-3702	10 years ago
Rob Winch	69274d9aa8	SEC-2521: Improve StandardPasswordEncoder performance	10 years ago
Thomas Darimont	ad1d858e2b	SEC-3056 - Fix JavaDoc errors. ... Fixed JavaDoc errors accross multiple modules in order to make javadoc happy with Java 8.	11 years ago
Andrew Barchuk	3832647ecf	Remove unused imports	11 years ago
Rob Winch	3db01bd9d6	SEC-3002: Add JUnit Assume to GCM encryption tests ... Not all JDKs have GCM installed on them.	11 years ago
Dave Syer	a48cc18858	SEC-3002: Add new option for AES encryption with GCM ... The Galois Counter Mode (GCM) is held to be superior than the current default CBC. This change adds an extra parameter to the constructor of AesBytesEncryptor and a new convenience method in Encryptors.	11 years ago
Rob Winch	ae6af5d73c	SEC-2915: Updated Java Code Formatting	11 years ago
Luke Taylor	743960d2d8	SEC-2122: Fix broken integration tests. ... Modified BCryptPasswordEncoder to no longer throw an IllegalArgumentException when the encoded password is empty or the incorrect format for bcrypt. Instead it now logs a warning that non bcrypt data was found. The Dms integration tests were failing after being changed to use bcrypt and this fixes the issue.	13 years ago
Luke Taylor	d6524feb62	SEC-2122: Change doc to prioritize bcrypt use	13 years ago
Rob Winch	a6bded86c2	SEC-1990: Polishing code cleanup on BCrypt ... - Formatting - Renamed test to be BCryptTests to better align with Spring Security's naming conventions	14 years ago
Joseph Walton	14a5135ac3	SEC-1990: Clean up jBCrypt and include its tests. ... Merge in changes from jBCrypt. - Use a ByteArrayOutputStream to cache bytes. - Pass a StringBuilder into encode_base64. - Refactor string comparison into its own method. - General clean up.	14 years ago
Luke Taylor	3760d792ea	SEC-1890: Add checks for validity of stored bcrypt hash ... When checking for a match, the BCryptPasswordEncoder validates the stored hash against a pattern to check that it actually is a bcrypt value.	14 years ago
Dave Syer	8565116f20	SEC-1472: Add crypto wrappers for BCrypt	14 years ago
Luke Taylor	45d938566c	Some tests for Base64 encoding.	15 years ago
Luke Taylor	89b7b2b935	SEC-1764: Remove use of Java 6 method Arrays.copyOfRange.	15 years ago
Luke Taylor	e27f655e9d	SEC-1689: Re-instate crypto as separate library (for use in non-Spring Security apps), as well as packaging with core.	15 years ago
Luke Taylor	50828cdd43	SEC-1689: Move crypto module code to core for simplicity.	15 years ago
Rob Winch	8c08eeb57b	SEC-1666: Use constant time comparison for sensitive data. ... Constant time comparison helps to mitigate timing attacks. See the following link for more information * http://rdist.root.org/2010/07/19/exploiting-remote-timing-attacks/ * http://en.wikipedia.org/wiki/Timing_attack for more information.	15 years ago
Rob Winch	2e822e9abe	SEC-1659: Ensure that Digester is returning digest(digest(value)...) instead of digesting the same value multiple times. ... Make it so that the Digester returns digest(digest(value)...) instead of digesting the same value multiple times. This alligns with the OWASP recommendations at http://www.owasp.org/index.php/Hashing_Java#Hardening_against_the_attacker.27s_attack	15 years ago
Luke Taylor	162cb64baa	SEC-1659: Label crypto utils package as only for internal use.	15 years ago
Keith Donald	b646e44646	SEC-1659: fixed bundlor step of build	15 years ago
Keith Donald	ea76efdb2c	SEC-1659: favor AES encryption instead of DES as standard symmetric encryption algorithm	15 years ago
Keith Donald	ffa7301e7f	SEC-1569: initial commit of spring-security-crypto module, consisting of encrypt, keygen, password, and util packages	15 years ago