So, DefaultPasswordService is intended to be used with hashed passwords generated by SimpleHash. If you run a password through this, you will see that it actually embeds all the information necessary for PasswordService in the output string. So, my recommendation is to not try and store the salt separately, and just let shiro handle it. Sorry that I can't provide more information on why your specific case isn't working, but I'd have to dig into it a bit and the day job is rather hectic right now.
-Jared On Thu 04 Oct 2012 11:00:55 AM CDT, Paul Holding wrote: > Sorry to keep going on about this but is anyone able to confirm whether the > setCredentialsSalt method in SimpleAuthenticationInfo is the correct way to > set the user's salt in a custom realm when using the PasswordMatcher? If not > is there another way I should be doing it? > > > > -- > View this message in context: > http://shiro-user.582556.n2.nabble.com/Migrating-from-HashedCredentialMatcher-to-PasswordMatcher-tp7577808p7577834.html > Sent from the Shiro User mailing list archive at Nabble.com.
