Package org.eclipse.jetty.util.security
Class Password
- java.lang.Object
-
- org.eclipse.jetty.util.security.Credential
-
- org.eclipse.jetty.util.security.Password
-
- All Implemented Interfaces:
java.io.Serializable
public class Password extends Credential
Password utility class. This utility class gets a password or pass phrase either by:+ Password is set as a system property. + The password is prompted for and read from standard input + A program is run to get the password.
Passwords that begin with OBF: are de obfuscated. Passwords can be obfuscated by run org.eclipse.util.Password as a main class. Obfuscated password are required if a system needs to recover the full password (eg. so that it may be passed to another system). They are not secure, but prevent casual observation.Passwords that begin with CRYPT: are oneway encrypted with UnixCrypt. The real password cannot be retrieved, but comparisons can be made to other passwords. A Crypt can be generated by running org.eclipse.util.UnixCrypt as a main class, passing password and then the username. Checksum passwords are a secure(ish) way to store passwords that only need to be checked rather than recovered. Note that it is not strong security - specially if simple passwords are used.
- See Also:
- Serialized Form
-
-
Nested Class Summary
-
Nested classes/interfaces inherited from class org.eclipse.jetty.util.security.Credential
Credential.Crypt, Credential.MD5
-
-
Field Summary
Fields Modifier and Type Field Description static java.lang.String
__OBFUSCATE
-
Constructor Summary
Constructors Constructor Description Password(java.lang.String password)
Constructor.
-
Method Summary
All Methods Static Methods Instance Methods Concrete Methods Modifier and Type Method Description boolean
check(java.lang.Object credentials)
Check a credentialstatic java.lang.String
deobfuscate(java.lang.String s)
boolean
equals(java.lang.Object o)
static Password
getPassword(java.lang.String realm, java.lang.String dft, java.lang.String promptDft)
Get a password.int
hashCode()
static void
main(java.lang.String[] arg)
static java.lang.String
obfuscate(java.lang.String s)
java.lang.String
toStarString()
java.lang.String
toString()
-
Methods inherited from class org.eclipse.jetty.util.security.Credential
byteEquals, getCredential, stringEquals
-
-
-
-
Field Detail
-
__OBFUSCATE
public static final java.lang.String __OBFUSCATE
- See Also:
- Constant Field Values
-
-
Method Detail
-
toString
public java.lang.String toString()
- Overrides:
toString
in classjava.lang.Object
-
toStarString
public java.lang.String toStarString()
-
check
public boolean check(java.lang.Object credentials)
Description copied from class:Credential
Check a credential- Specified by:
check
in classCredential
- Parameters:
credentials
- The credential to check against. This may either be another Credential object, a Password object or a String which is interpreted by this credential.- Returns:
- True if the credentials indicated that the shared secret is known to both this Credential and the passed credential.
-
equals
public boolean equals(java.lang.Object o)
- Overrides:
equals
in classjava.lang.Object
-
hashCode
public int hashCode()
- Overrides:
hashCode
in classjava.lang.Object
-
obfuscate
public static java.lang.String obfuscate(java.lang.String s)
-
deobfuscate
public static java.lang.String deobfuscate(java.lang.String s)
-
getPassword
public static Password getPassword(java.lang.String realm, java.lang.String dft, java.lang.String promptDft)
Get a password. A password is obtained by trying- Calling
System.getProperty(realm,dft)
- Prompting for a password
- Using promptDft if nothing was entered.
- Parameters:
realm
- The realm name for the password, used as a SystemProperty name.dft
- The default password.promptDft
- The default to use if prompting for the password.- Returns:
- Password
- Calling
-
main
public static void main(java.lang.String[] arg)
-
-