etan39
/
cloudstack
mirror of https://github.com/apache/cloudstack.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cloudstack/server/src/com/cloud
History
Hugo Trippaers bd58ceccd8 Summary: Make the authenticator responsible for encoding the password and add a SHA256 salted authenticator 
The authenticators now have an encode function that cloudstack will use to encode the user supplied password before storing it in the database. This makes it easier to add other authenticators with other hashing algorithms. The requires a two step approach to creating the admin account at first start as the authenticators are only present in the management-server component locator.

The SHA256 salted authenticator make use of this new system and adds a hashing algorithm based on SHA256 with a salt. This type of hash is far less susceptible to rainbow table attacks.

To make use of these new features the users password will be sent over the wire just as he typed it and it will be transformed into a hash on the server and compared with the stored password. This means that the hash will not go over the wire anymore.

The default authenticator in components.xml is still set to md5 for backwards compatibility. For new installations the sha256 could be enabled.
 		2012-10-30 12:56:56 +01:00
..
account Patch from Chip Childers 2012-07-02 09:51:21 -04:00
acl Patch from Chip Childers 2012-07-02 09:51:21 -04:00
agent Fix small compilation issue encountered when building with maven 2012-08-24 11:18:53 -07:00
alert Patch from Chip Childers 2012-07-02 09:51:21 -04:00
api CLOUDSTACK-409: ThreadLocal Transaction and its db connection got reset for user managed db connnection, causing ClusterHeartBeat thread frequently trying to get db connection. Add unit test to test user managed transaction. 2012-10-25 13:06:50 -07:00
async CLOUDSTACK-304: Synchronization support for createSnapshot command - don't sent more than "concurrent.snapshots.threshold.perhost" createSnapshots commands to the backend host. 2012-10-10 13:40:00 -07:00
baremetal Move KVM related code into plugins/hypervisor/kvm, a new jar file is 2012-07-30 14:55:47 -07:00
capacity CS 16158: Load Test - Adding host takes much longer in 3.0.x compared to 2.2.14. 2012-08-31 13:40:18 -07:00
certificate/dao Patch from Chip Childers 2012-07-02 09:51:21 -04:00
cluster [CLOUDSTACK-359] Hook up the other side of the event propagation 2012-10-26 14:25:14 +02:00
configuration CLOUDSTACK-304: default number of concurrent snapshots is NULL (unlimited) - to provide backwards compatibility for existing customers. 2012-10-16 11:25:05 -07:00
consoleproxy CLOUDSTACK-215 CPVM load balance didn't work, VNC console sessions go to one CPVM and ignore other CPVMs 2012-09-27 13:03:09 +08:00
dao Patch from Chip Childers 2012-07-02 09:51:21 -04:00
dc CLOUDSTACK-70: Improve restart network behaviour for basic network 2012-10-11 19:33:26 +05:30
deploy bug CS-15278: For removing clusters crossing threshold find out the list of cluster through db instead of iteratting cluster one by one in the java code. 2012-08-13 16:20:57 +05:30
domain Patch from Chip Childers 2012-07-02 09:51:21 -04:00
event Patch from Chip Childers 2012-07-02 09:51:21 -04:00
ha HA worker thread needs to have its own worker thread configuration 2012-08-17 12:59:52 -07:00
host/dao Phase 1 of Nicira integration 2012-07-11 17:16:06 -07:00
hypervisor add apidocs/devcloud projects 2012-10-21 00:01:47 -07:00
keystore Patch from Chip Childers 2012-07-02 09:51:21 -04:00
maint Add ability to do jetty:run in eclipse 2012-08-28 09:16:44 -07:00
migration Removed unused imports (that caused a dependency on xapi) 2012-10-02 10:30:26 -07:00
network [CLOUDSTACK-415] Workaround this problem for now 2012-10-29 09:26:14 +01:00
offerings Merge branch 'master' into vpc 2012-07-03 17:32:50 -07:00
projects fix build 2012-10-29 12:55:15 -07:00
resource CS-16258: Load Test - 1 host stuck in "Rebalancing" state forever. "java.lang.NullPointerException" seen in "Cluster-Worker" thread that was handling this process. 2012-09-06 16:31:00 -07:00
resourcelimit Name change for vpc/Dao package (dao is lowercased now) 2012-08-08 14:51:51 -07:00
secstorage Patch from Chip Childers 2012-07-02 09:51:21 -04:00
server Summary: Make the authenticator responsible for encoding the password and add a SHA256 salted authenticator 2012-10-30 12:56:56 +01:00
service Patch from Chip Childers 2012-07-02 09:51:21 -04:00
servlet Summary: Make the authenticator responsible for encoding the password and add a SHA256 salted authenticator 2012-10-30 12:56:56 +01:00
storage CLOUDSTACK-279: fixed deleteProject when executed by the regular user. Always pass System account as a caller when do account cleanup 2012-10-17 17:26:19 -07:00
tags CLOUDSTACK-332: intermediate checkin fixing count parameter in listCommands 2012-10-12 13:58:59 -07:00
template Patch from Chip Childers 2012-07-02 09:51:21 -04:00
test Fixed CLOUDSTACK-287 2012-10-09 09:37:27 -07:00
upgrade Added license header to Upgrade40to41.java 2012-10-02 13:06:59 -04:00
usage Patch from Chip Childers 2012-07-02 09:51:21 -04:00
user Summary: Make the authenticator responsible for encoding the password and add a SHA256 salted authenticator 2012-10-30 12:56:56 +01:00
uuididentity ResourceTags: resourcetags support for Project/Vpc/NetworkACL/StaticRoute 2012-08-01 18:54:08 -07:00
vm CLOUDSTACK-332: intermediate checkin fixing count parameter in listCommands 2012-10-12 13:58:59 -07:00