Class StrongPasswordEncryptor

  • All Implemented Interfaces:
    PasswordEncryptor

    public final class StrongPasswordEncryptor
    extends java.lang.Object
    implements PasswordEncryptor

    Utility class for easily performing high-strength password digesting and checking.

    This class internally holds a StandardStringDigester configured this way:

    • Algorithm: SHA-256.
    • Salt size: 16 bytes.
    • Iterations: 100000.

    The required steps to use it are:

    1. Create an instance (using new).
    2. Perform the desired encryptPassword(String) or checkPassword(String, String) operations.

    This class is thread-safe

    Since:
    1.2 (class existed in org.jasypt.util package since 1.1)
    • Constructor Summary

      Constructors 
      Constructor Description
      StrongPasswordEncryptor()
      Creates a new instance of StrongPasswordEncryptor
    • Method Summary

      All Methods Instance Methods Concrete Methods 
      Modifier and Type Method Description
      boolean checkPassword​(java.lang.String plainPassword, java.lang.String encryptedPassword)
      Checks an unencrypted (plain) password against an encrypted one (a digest) to see if they match.
      java.lang.String encryptPassword​(java.lang.String password)
      Encrypts (digests) a password.
      • Methods inherited from class java.lang.Object

        clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait
    • Constructor Detail

      • StrongPasswordEncryptor

        public StrongPasswordEncryptor()
        Creates a new instance of StrongPasswordEncryptor
    • Method Detail

      • checkPassword

        public boolean checkPassword​(java.lang.String plainPassword,
                                     java.lang.String encryptedPassword)
        Checks an unencrypted (plain) password against an encrypted one (a digest) to see if they match.
        Specified by:
        checkPassword in interface PasswordEncryptor
        Parameters:
        plainPassword - the plain password to check.
        encryptedPassword - the digest against which to check the password.
        Returns:
        true if passwords match, false if not.
        See Also:
        StandardStringDigester.matches(String, String)