From e1b78d96d01a01bb9e537a5c2428198e6c994a64 Mon Sep 17 00:00:00 2001
From: Chris Ridd <chris.ridd@forgerock.com>
Date: Wed, 20 Feb 2013 14:09:09 +0000
Subject: [PATCH] Fix OPENDJ-510 Add support for PBKDF2 password storage scheme

---
 opends/src/server/org/opends/server/extensions/ExtensionsConstants.java |   34 ++++++++++++++++++++++++++++++++++
 1 files changed, 34 insertions(+), 0 deletions(-)

diff --git a/opends/src/server/org/opends/server/extensions/ExtensionsConstants.java b/opends/src/server/org/opends/server/extensions/ExtensionsConstants.java
index 3353282..782c887 100644
--- a/opends/src/server/org/opends/server/extensions/ExtensionsConstants.java
+++ b/opends/src/server/org/opends/server/extensions/ExtensionsConstants.java
@@ -23,6 +23,7 @@
  *
  *
  *      Copyright 2006-2008 Sun Microsystems, Inc.
+ *      Portions copyright 2013 ForgeRock AS.
  */
 package org.opends.server.extensions;
 
@@ -78,6 +79,15 @@
 
 
   /**
+   * The authentication password scheme name for use with passwords encoded in a
+   * PBKDF2 representation.
+   */
+  public static final String AUTH_PASSWORD_SCHEME_NAME_PBKDF2 =
+       "PBKDF2";
+
+
+
+  /**
    * The name of the message digest algorithm that should be used to generate
    * MD5 hashes.
    */
@@ -118,6 +128,22 @@
 
 
   /**
+   * The name of the message digest algorithm that should be used to generate
+   * PBKDF2 hashes.
+   */
+  public static final String MESSAGE_DIGEST_ALGORITHM_PBKDF2 =
+       "PBKDF2WithHmacSHA1";
+
+
+
+  /**
+   * The name of the pseudo-random number generator using SHA-1.
+   */
+  public static final String SECURE_PRNG_SHA1 = "SHA1PRNG";
+
+
+
+  /**
    * The cipher transformation that should be used when performing 3DES
    * encryption/decription.
    */
@@ -295,6 +321,14 @@
 
   /**
    * The password storage scheme name that will be used for passwords stored in
+   * a PBKDF2 representation.
+   */
+  public static final String STORAGE_SCHEME_NAME_PBKDF2 = "PBKDF2";
+
+
+
+  /**
+   * The password storage scheme name that will be used for passwords stored in
    * a UNIX crypt representation.
    */
   public static final String STORAGE_SCHEME_NAME_CRYPT = "CRYPT";

--
Gitblit v1.10.0