org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder Java Examples

The following examples show how to use org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder. You can vote up the ones you like or vote down the ones you don't like, and go to the original project or source file by following the links above each example. You may check out the related API usage on the sidebar.
Example #1
Source File: PasswordPlaceholderConfigurer.java    From kylin with Apache License 2.0 7 votes vote down vote up
public static void main(String[] args) {
    if (args.length != 2) {
        printUsage();
        System.exit(1);
    }

    String encryptMethod = args[0];
    String passwordTxt = args[1];
    if ("AES".equalsIgnoreCase(encryptMethod)) {
        // for encrypt password like LDAP password
        System.out.println(encryptMethod + " encrypted password is: ");
        System.out.println(EncryptUtil.encrypt(passwordTxt));
    } else if ("BCrypt".equalsIgnoreCase(encryptMethod)) {
        // for encrypt the predefined user password, like ADMIN, MODELER.
        BCryptPasswordEncoder bCryptPasswordEncoder = new BCryptPasswordEncoder();
        System.out.println(encryptMethod + " encrypted password is: ");
        System.out.println(bCryptPasswordEncoder.encode(passwordTxt));
    } else {
        printUsage();
        System.exit(1);
    }
}
 
Example #2
Source File: TailStreamer.java    From tailstreamer with MIT License 6 votes vote down vote up
public static void main(String...args) {
    System.setProperty("spring.config.name", "tailstreamer");
    System.setProperty("spring.config.location", "../conf/");

    ArgumentProcessor argumentProcessor = new ArgumentProcessor();
    if (argumentProcessor.parseArguments(args) && argumentProcessor.validateArguments()) {
        OptionSet options = argumentProcessor.getOptions();
        if (options.has("h")) {
            System.out.println(getHelpText());
        } else if (options.has("v")) {
            System.out.println("TailStreamer version " + VERSION);
        } else if (options.has("encryptPassword")) {
            BCryptPasswordEncoder encoder = new BCryptPasswordEncoder();
            System.out.println(encoder.encode((String) options.nonOptionArguments().get(0)));
        } else {
            TailStreamerApplication app = new TailStreamerApplication(TailStreamer.class, argumentProcessor.getOptions());
            app.run(args);
        }
    } else {
        System.err.println(argumentProcessor.getValidationErrorMessage());
        System.out.println(getHelpText());
        System.exit(1);
    }
}
 
Example #3
Source File: AdminRestApi.java    From mogu_blog_v2 with Apache License 2.0 6 votes vote down vote up
@AuthorityVerify
@OperationLogger(value = "重置用户密码")
@ApiOperation(value = "重置用户密码", notes = "重置用户密码")
@PostMapping("/restPwd")
public String restPwd(HttpServletRequest request,
                      @ApiParam(name = "uid", value = "管理员uid", required = true) @RequestParam(name = "uid", required = false) String uid) {

    if (StringUtils.isEmpty(uid)) {
        return ResultUtil.result(SysConf.ERROR, MessageConf.PARAM_INCORRECT);
    }

    Admin admin = adminService.getById(uid);
    PasswordEncoder encoder = new BCryptPasswordEncoder();
    admin.setPassWord(encoder.encode(DEFAULE_PWD));
    admin.setUpdateTime(new Date());
    admin.updateById();

    return ResultUtil.result(SysConf.SUCCESS, MessageConf.UPDATE_SUCCESS);
}
 
Example #4
Source File: UserService.java    From sanshanblog with Apache License 2.0 6 votes vote down vote up
/**
 * 更改密码
 * @param code
 * @param password
 * @param responseMsgVO
 */
public void changePwd(String code, String password, ResponseMsgVO responseMsgVO) {
    String username=  UserContextHandler.getUsername();


    UserDO userDO = userRepository.findByUsername(username);
    log.info("用户:{}更改密码",userDO.getUsername());
    String key = CODE_PREFIX + CodeTypeEnum.CHANGE_PWD.getValue() + userDO.getEmail();
    String value = redisTemplate.opsForValue().get(key);
    if (!StringUtils.equals(code, value)) {
        responseMsgVO.buildWithMsgAndStatus(PosCodeEnum.PARAM_ERROR, "验证码错误");
        return;
    }

    if (!checkPassWordLegal(password, responseMsgVO)){
        return;
    }

    // 更新到mongo数据库
    BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
    WriteResult result = userRepository.changePassword(username, passwordEncoder.encode(password));
    if (result.getN() == 0) {
        responseMsgVO.buildWithMsgAndStatus(PosCodeEnum.PARAM_ERROR, "更新失败");
        return;
    }
    responseMsgVO.buildOK();
}
 
Example #5
Source File: IdmEngineAutoConfigurationTest.java    From flowable-engine with Apache License 2.0 6 votes vote down vote up
@Test
public void standaloneIdmEngineWithBCryptPasswordEncoder() {
    contextRunner
        .withPropertyValues("flowable.idm.password-encoder=spring_bcrypt")
        .run(context -> {
            IdmEngine idmEngine = context.getBean(IdmEngine.class);

            assertThat(context).hasSingleBean(PasswordEncoder.class);

            org.flowable.idm.api.PasswordEncoder flowablePasswordEncoder = idmEngine.getIdmEngineConfiguration().getPasswordEncoder();
            PasswordEncoder passwordEncoder = context.getBean(PasswordEncoder.class);
            assertThat(flowablePasswordEncoder)
                .isInstanceOfSatisfying(SpringEncoder.class, springEncoder -> {
                    assertThat(springEncoder.getSpringEncodingProvider()).isEqualTo(passwordEncoder);
                });
            assertThat(passwordEncoder).isInstanceOf(BCryptPasswordEncoder.class);
        });
}
 
Example #6
Source File: ChangePasswordControllerIntegrationTest.java    From coderadar with MIT License 5 votes vote down vote up
@Test
void ChangePasswordSuccessfully() throws Exception {
  UserEntity testUser = new UserEntity();
  testUser.setUsername("username");
  testUser.setPassword(PasswordUtil.hash("password1"));
  testUser = userRepository.save(testUser);

  RefreshTokenEntity refreshToken = new RefreshTokenEntity();
  refreshToken.setToken(
      tokenService.generateRefreshToken(testUser.getId(), testUser.getUsername()));
  refreshToken.setUser(testUser);
  refreshTokenRepository.save(refreshToken);

  ChangePasswordCommand command =
      new ChangePasswordCommand(refreshToken.getToken(), "newPassword1");
  mvc()
      .perform(
          post("/api/user/password/change")
              .content(toJson(command))
              .contentType(MediaType.APPLICATION_JSON))
      .andExpect(MockMvcResultMatchers.status().isOk())
      .andDo(documentPasswordChange());

  Assertions.assertTrue(
      new BCryptPasswordEncoder()
          .matches(
              "newPassword1", userRepository.findById(testUser.getId()).get().getPassword()));
}
 
Example #7
Source File: InternalAuthenticationProvider.java    From osiam with MIT License 5 votes vote down vote up
@Autowired
public InternalAuthenticationProvider(SCIMUserProvisioning userProvisioning,
                                      ShaPasswordEncoder shaPasswordEncoder,
                                      BCryptPasswordEncoder bCryptPasswordEncoder,
                                      @Value("${osiam.tempLock.count:0}") Integer maxLoginFailures,
                                      @Value("${osiam.tempLock.timeout:0}") Integer lockTimeout) {
    this.userProvisioning = userProvisioning;
    this.shaPasswordEncoder = shaPasswordEncoder;
    this.bCryptPasswordEncoder = bCryptPasswordEncoder;
    this.maxLoginFailures = maxLoginFailures;
    this.lockTimeout = lockTimeout;
}
 
Example #8
Source File: User.java    From abixen-platform with GNU Lesser General Public License v2.1 5 votes vote down vote up
public void changeAvatar(String imageLibraryDirectory, MultipartFile avatarFile) throws IOException {
    final File currentAvatarFile = new File(imageLibraryDirectory + "/user-avatar/" + getAvatarFileName());
    if (currentAvatarFile.exists()) {
        if (!currentAvatarFile.delete()) {
            throw new FileExistsException();
        }
    }
    final PasswordEncoder encoder = new BCryptPasswordEncoder();
    final String newAvatarFileName = encoder.encode(avatarFile.getName() + new Date().getTime()).replaceAll("\"", "s").replaceAll("/", "a").replace(".", "sde");
    final File newAvatarFile = new File(imageLibraryDirectory + "/user-avatar/" + newAvatarFileName);
    final FileOutputStream out = new FileOutputStream(newAvatarFile);
    out.write(avatarFile.getBytes());
    out.close();
    setAvatarFileName(newAvatarFileName);
}
 
Example #9
Source File: AuthUserService.java    From java-tutorial with MIT License 5 votes vote down vote up
/**
 * 注册auth User
 *
 * @param user AuthUser
 * @return string
 */
public String register(AuthUser user) {
    String username = user.getUsername();
    if (this.findByUserName(username) != null) {
        return "用户已存在";
    }
    BCryptPasswordEncoder encoder = new BCryptPasswordEncoder();
    String rawPassword = user.getPassword();
    user.setPassword(encoder.encode(rawPassword));
    List<String> roles = new ArrayList<>();
    roles.add("ROLE_USER");
    authMapper.register(user);
    return "注册成功";
}
 
Example #10
Source File: AuthorizationServerConfig.java    From SpringAll with MIT License 5 votes vote down vote up
@Override
public void configure(ClientDetailsServiceConfigurer clients) throws Exception {
    clients.inMemory()
            .withClient("test1")
            .secret(new BCryptPasswordEncoder().encode("test1111"))
            .authorizedGrantTypes("password", "refresh_token")
            .accessTokenValiditySeconds(3600)
            .refreshTokenValiditySeconds(864000)
            .scopes("all", "a", "b", "c")
        .and()
            .withClient("test2")
            .secret(new BCryptPasswordEncoder().encode("test2222"))
            .accessTokenValiditySeconds(7200);
}
 
Example #11
Source File: SCryptPasswordEncoderTest.java    From MaxKey with Apache License 2.0 5 votes vote down vote up
public static void main(String[] args) {
	// TODO Auto-generated method stub
	BCryptPasswordEncoder pe=new BCryptPasswordEncoder();
	//String c="$e0801$7Holo9EgzBeg5xf/WLZu3/5IQwOyEPDLJPgMXkF9jnekBrbQUMt4CF9O2trkz3zBCnCLpUMR437q/AjQ5TTToA==$oYB8KRSxAsxkKkt5r79W6r6P0wTUcKwGye1ivXRN0Ts="
	//;
	System.out.println(pe.encode("admin"));
		//	System.out.println(pe.encode("shimingxy")+"_password");
			//System.out.println(pe.matches("shimingxy"+"_password", c));
}
 
Example #12
Source File: UserAccountService.java    From runscore with Apache License 2.0 5 votes vote down vote up
/**
 * 账号注册
 * 
 * @param param
 */
@ParamValid
@Transactional
public void register(UserAccountRegisterParam param) {
	UserAccount userAccount = userAccountRepo.findByUserName(param.getUserName());
	if (userAccount != null) {
		throw new BizException(BizError.用户名已存在);
	}
	param.setLoginPwd(new BCryptPasswordEncoder().encode(param.getLoginPwd()));
	param.setMoneyPwd(new BCryptPasswordEncoder().encode(param.getMoneyPwd()));
	UserAccount newUserAccount = param.convertToPo();
	RegisterSetting setting = registerSettingRepo.findTopByOrderByLatelyUpdateTime();
	if (!setting.getRegisterEnabled()) {
		throw new BizException(BizError.未开放注册功能);
	}
	if (setting.getInviteRegisterEnabled()) {
		InviteCode inviteCode = inviteCodeRepo
				.findTopByCodeAndPeriodOfValidityGreaterThanEqual(param.getInviteCode(), new Date());
		if (inviteCode == null) {
			throw new BizException(BizError.邀请码不存在或已失效);
		}
		newUserAccount.updateInviteInfo(inviteCode);
	} else {
		newUserAccount.setRebate(setting.getRegitserDefaultRebate());
	}
	userAccountRepo.save(newUserAccount);
}
 
Example #13
Source File: UserAccountService.java    From runscore with Apache License 2.0 5 votes vote down vote up
@ParamValid
@Transactional
public void modifyLoginPwd(ModifyLoginPwdParam param) {
	UserAccount userAccount = userAccountRepo.getOne(param.getUserAccountId());
	BCryptPasswordEncoder pwdEncoder = new BCryptPasswordEncoder();
	if (!pwdEncoder.matches(param.getOldLoginPwd(), userAccount.getLoginPwd())) {
		throw new BizException(BizError.旧的登录密码不正确);
	}
	modifyLoginPwd(param.getUserAccountId(), param.getNewLoginPwd());
}
 
Example #14
Source File: WebSecurityConfig.java    From java-webapp-security-examples with Apache License 2.0 5 votes vote down vote up
@Autowired
public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
    auth
        .jdbcAuthentication()
            .dataSource(this.dataSource)
            .passwordEncoder(new BCryptPasswordEncoder());
}
 
Example #15
Source File: WebSecurityConfig.java    From POC with Apache License 2.0 5 votes vote down vote up
public WebSecurityConfig(BCryptPasswordEncoder bCryptPasswordEncoder,
		CustomizeAuthenticationSuccessHandler customizeAuthenticationSuccessHandler,
		CustomUserDetailsServiceImpl customUserDetailsServiceImpl) {
	super();
	this.bCryptPasswordEncoder = bCryptPasswordEncoder;
	this.customizeAuthenticationSuccessHandler = customizeAuthenticationSuccessHandler;
	this.customUserDetailsServiceImpl = customUserDetailsServiceImpl;
}
 
Example #16
Source File: CrustAuthenticationProvider.java    From Milkomeda with MIT License 5 votes vote down vote up
public CrustAuthenticationProvider(CrustProperties props, BCryptPasswordEncoder passwordEncoder) {
    this.props = props;
    // 设置BCrypt密码加密器
    if (props.isUseBcrypt() && passwordEncoder != null) {
        setPasswordEncoder(passwordEncoder);
    }
}
 
Example #17
Source File: DummyAuthenticationProviderTest.java    From api-layer with Eclipse Public License 2.0 5 votes vote down vote up
@BeforeAll
public static void setup() {
    MonitoringHelper.initMocks();
    BCryptPasswordEncoder encoder = new BCryptPasswordEncoder(10);
    UserDetailsService userDetailsService = new InMemoryUserDetailsService(encoder);
    AuthenticationService authenticationService = mock(AuthenticationService.class);
    dummyAuthenticationProvider = new DummyAuthenticationProvider(encoder, userDetailsService, authenticationService);
}
 
Example #18
Source File: SecurityConfig.java    From Spring5Tutorial with GNU Lesser General Public License v3.0 5 votes vote down vote up
@Override
protected void configure(AuthenticationManagerBuilder builder) throws Exception {
    builder.jdbcAuthentication()
           .passwordEncoder(new BCryptPasswordEncoder())
           .dataSource(dataSource)
           .usersByUsernameQuery("select name, password, enabled from t_account where name=?")
           .authoritiesByUsernameQuery("select name, role from t_account_role where name=?");

}
 
Example #19
Source File: GatewayApplicationTests.java    From mini-platform with MIT License 5 votes vote down vote up
@Test
public void encodingBCrypt() {
    BCryptPasswordEncoder passwordEncoder = new BCryptPasswordEncoder();
    //加密时使用
    String hashPassword = passwordEncoder.encode("12345");
    log.info("BCrypt HashPassword: {}", hashPassword);
}
 
Example #20
Source File: OAuthTokenProducer.java    From Learning-Path-Spring-5-End-to-End-Programming with MIT License 4 votes vote down vote up
@Bean
public PasswordEncoder passwordEncoder() {
    return new BCryptPasswordEncoder();
}
 
Example #21
Source File: UmsAdminResourceConfiguration.java    From MyShopPlus with Apache License 2.0 4 votes vote down vote up
@Bean
public BCryptPasswordEncoder passwordEncoder() {
    return new BCryptPasswordEncoder();
}
 
Example #22
Source File: WebSecurityConfig.java    From spring-cloud-study with Apache License 2.0 4 votes vote down vote up
@Bean
public BCryptPasswordEncoder passwordEncoder() {
    return new BCryptPasswordEncoder();
}
 
Example #23
Source File: UserEntity.java    From spring-data-rest-acl with Apache License 2.0 4 votes vote down vote up
public void setPassword(String password) {
	PasswordEncoder encoder = new BCryptPasswordEncoder();
	this.password = encoder.encode(password);
}
 
Example #24
Source File: SecurityConfig.java    From Spring5Tutorial with GNU Lesser General Public License v3.0 4 votes vote down vote up
@Bean
public PasswordEncoder passwordEncoder() {
	return new BCryptPasswordEncoder();
}
 
Example #25
Source File: PasswordEncoderConfiguration.java    From tutorials with MIT License 4 votes vote down vote up
@Bean
public PasswordEncoder passwordEncoder() {
    return new BCryptPasswordEncoder();
}
 
Example #26
Source File: CrustConfig.java    From Milkomeda with MIT License 4 votes vote down vote up
@Bean
@ConditionalOnMissingBean
@ConditionalOnProperty(prefix = "milkomeda.crust", name = "use-bcrypt", havingValue = "true", matchIfMissing = true)
public BCryptPasswordEncoder bCryptPasswordEncoder() {
    return new BCryptPasswordEncoder();
}
 
Example #27
Source File: SecurityConfig.java    From mall-learning with Apache License 2.0 4 votes vote down vote up
@Bean
public PasswordEncoder passwordEncoder() {
    return new BCryptPasswordEncoder();
}
 
Example #28
Source File: JWTWebSecurityConfig.java    From spring-boot-vuejs-fullstack-examples with MIT License 4 votes vote down vote up
@Bean
public PasswordEncoder passwordEncoderBean() {
    return new BCryptPasswordEncoder();
}
 
Example #29
Source File: SecurityConfig.java    From Spring-Security-Third-Edition with MIT License 4 votes vote down vote up
/**
 * BCryptPasswordEncoder password encoder
 * @return
 */
@Bean
public PasswordEncoder passwordEncoder(){
    return new BCryptPasswordEncoder(4);
}
 
Example #30
Source File: WebSecurityConfiguration.java    From spring-security-jwt-rest-stateless with MIT License 4 votes vote down vote up
@Autowired
public void configureAuthentication(AuthenticationManagerBuilder authenticationManagerBuilder) throws Exception {
    authenticationManagerBuilder
            .userDetailsService(userDetailsService)
            .passwordEncoder(new BCryptPasswordEncoder());
}