JasperReports Server receives the credentials from the user in the login request as plaintext. If your database stores encrypted user passwords, configure the secret key and encryption algorithm in the passwordValidator bean so that JasperReports Server can encrypt the password from the user request and compare it to the password from the external database. The passwordValidator bean in the sample file allows you to configure a DES cipher and password.
| If your database uses a different encryption algorithm, you can configure your own password encoder using the Spring implementations of the PasswordEncoder interface. |
The passwordValidator bean in the sample file has the following properties:
| • | keyInPlainText property – Specifies whether secretKey is entered as plaintext or as an encoded number string representation, such as octal or hexadecimal. |
| • | secretKey property – Enter the secret key that the database uses to encrypt passwords. Enter in the format (plaintext or encoded) specified in the keyInPlainText property. |
| • | secretKeyAlgorithm property – Enter the symmetric key algorithm that the database uses to encrypt passwords. The sample file only supports DES with cipher class extensions. |
| • | cipherTransformation property – Enter the cipher transformations the database uses to encrypt passwords. |
The following example shows how to configure the bean with a DESede cipher with CBC and PKCS5 padding:
Recommended Comments
There are no comments to display.