Package org.apereo.cas.configuration.model.core.config.standalone

Class StandaloneConfigurationSecurityProperties

java.lang.Object
org.apereo.cas.configuration.model.core.config.standalone.StandaloneConfigurationSecurityProperties
All Implemented Interfaces:
Serializable
@RequiresModule(name="cas-server-core-configuration", automated=true) public class StandaloneConfigurationSecurityProperties extends Object implements Serializable
This is StandaloneConfigurationSecurityProperties.
Since:
6.4.0
See Also:

  • Constructor Details

    • StandaloneConfigurationSecurityProperties

      public StandaloneConfigurationSecurityProperties()

  • Method Details

    • getAlg

      public String getAlg()
      Algorithm to use when deciphering settings. Default algorithm is PBEWithMD5AndTripleDES.

    • getProvider

      public String getProvider()
      Security provider to use when deciphering settings. Leave blank for Java, BC for BouncyCastle.

    • getIterations

      public long getIterations()
      Total number of iterations to use when deciphering settings. Default value comes from Jasypt 1000

    • getPsw

      public String getPsw()
      Secret key/password to use when deciphering settings.

    • getInitializationVector

      public Boolean getInitializationVector()
      An initialization vector is required for PBEWithDigestAndAES algorithms that aren't BouncyCastle. Enabling an initialization vector will break passwords encrypted without one. Toggling this value will make pre-existing non-PBEWithDigestAndAES encrypted passwords not work. For non-BouncyCastle PBEWithDigestAndAES algorithms that require an initialization vector, one will be used regardless of this setting since backwards compatibility with existing passwords using those algorithms is not an issue (since they didn't work in previous CAS versions). The default value is false so as not to break existing encrypted passwords. In general the use of an initialization vector will increase the encrypted text's length.

    • setAlg

      public StandaloneConfigurationSecurityProperties setAlg(String alg)
      Algorithm to use when deciphering settings. Default algorithm is PBEWithMD5AndTripleDES.
      Returns:
      this.

    • setProvider

      public StandaloneConfigurationSecurityProperties setProvider(String provider)
      Security provider to use when deciphering settings. Leave blank for Java, BC for BouncyCastle.
      Returns:
      this.

    • setIterations

      public StandaloneConfigurationSecurityProperties setIterations(long iterations)
      Total number of iterations to use when deciphering settings. Default value comes from Jasypt 1000
      Returns:
      this.

    • setPsw

      public StandaloneConfigurationSecurityProperties setPsw(String psw)
      Secret key/password to use when deciphering settings.
      Returns:
      this.

    • setInitializationVector

      public StandaloneConfigurationSecurityProperties setInitializationVector(Boolean initializationVector)
      An initialization vector is required for PBEWithDigestAndAES algorithms that aren't BouncyCastle. Enabling an initialization vector will break passwords encrypted without one. Toggling this value will make pre-existing non-PBEWithDigestAndAES encrypted passwords not work. For non-BouncyCastle PBEWithDigestAndAES algorithms that require an initialization vector, one will be used regardless of this setting since backwards compatibility with existing passwords using those algorithms is not an issue (since they didn't work in previous CAS versions). The default value is false so as not to break existing encrypted passwords. In general the use of an initialization vector will increase the encrypted text's length.
      Returns:
      this.