> What I do is store the hashes as tuples which contain enough information my > code to figure out what hash to use. All of this applies to encryption as > well. > > I'm wondering is if we should provide some kind of manager to manage all this.
I think upgrading hash algorithms is something the library should help with if possible. This proposal also reminds me of something I added to the Grails plugin: a service that provides an encodePassword() method that uses the currently configured credentials matcher to perform the hashing. It's a hack but solves the problem of having to explicitly specify the hashing algorithm in two places: for the credentials matcher and when hashing the passwords. It would make sense to me to provide such a feature in the proposed manager. Peter
