-
1. Re: Using BouncyCastle with DatabaseServerLoginModule
starksm64 May 26, 2006 10:46 AM (in response to bezdomny)Follow your jdk instructions on how to add a new JCE provider.
-
2. Re: Using BouncyCastle with DatabaseServerLoginModule
bezdomny May 26, 2006 11:26 AM (in response to bezdomny)Thanks Scott,
I added Provider fine, but how with DatabaseServerLoginModule know to use the SHA-256 algorithm provided by BC? Will it know to use it because the sun JCE doesn't support SHA-256? -
3. Re: Using BouncyCastle with DatabaseServerLoginModule
starksm64 May 26, 2006 11:29 AM (in response to bezdomny)If it does, you'll have to put BC ahead of the Sun JCE provider as we don't have an option for choosing both the hash algorithm and provider. In jdk5 there is an SHA-256 provider bundled by default.
-
4. Re: Using BouncyCastle with DatabaseServerLoginModule
bezdomny May 26, 2006 11:34 AM (in response to bezdomny)Ok. Thanks. I'll try it, but I'm thinking now that SHA-256 should be SHA-256 no matter who implements it. So passwords hashed with BC SHA-256 should hash to the same value with the Sun SHA-256. Thanks again for the help.
B -
5. Re: Using BouncyCastle with DatabaseServerLoginModule
starksm64 May 26, 2006 11:38 AM (in response to bezdomny)Right, it should not matter which SHA-256 provider is used.
-
6. Re: Using BouncyCastle with DatabaseServerLoginModule
bezdomny May 26, 2006 12:30 PM (in response to bezdomny)I've got it now. My main problem was not having
<module-option name="ignorePasswordCase">TRUE</module-option>
in my login-config. Thanks again for all the help.
B