[jira] [Resolved] (ISIS-2995) [Task] Verify IsisModuleSecurityBypass does bypass Password Hash Generation

Andi Huber (Jira) Fri, 08 Apr 2022 09:52:05 -0700


     [ 
https://issues.apache.org/jira/browse/ISIS-2995?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]


Andi Huber resolved ISIS-2995.
------------------------------
    Resolution: Done

Could not find any issues, with the Security Bypass Module. Seems to work 
correctly.

> [Task] Verify IsisModuleSecurityBypass does bypass Password Hash Generation
> ---------------------------------------------------------------------------
>
>                 Key: ISIS-2995
>                 URL: https://issues.apache.org/jira/browse/ISIS-2995
>             Project: Isis
>          Issue Type: Task
>          Components: Isis Core
>    Affects Versions: 2.0.0-M7
>            Reporter: Jörg Rade
>            Assignee: Andi Huber
>            Priority: Major
>             Fix For: 2.0.0-RC1
>
>
> Even when IsisModuleSecurityBypass.class  is included in DemoAppWicketJpa, 
> BCrypt action are logged to the console (using parameters:  -Xms1G 
> -Djava.security.egd=file:///dev/./urandom 
> -Djava.security.debug="provider,engine=SecureRandom")
> See:   
> https://the-asf.slack.com/archives/CFC42LWBV/p1649400664122289?thread_ts=1648577147.703919&cid=CFC42LWBV



--
This message was sent by Atlassian Jira
(v8.20.1#820001)

[jira] [Resolved] (ISIS-2995) [Task] Verify IsisModuleSecurityBypass does bypass Password Hash Generation

Reply via email to