org.springframework.security.crypto.password.AbstractValidatingPasswordEncoder

org.springframework.security.crypto.password4j.ScryptPassword4jPasswordEncoder

All Implemented Interfaces:: PasswordEncoder

public class ScryptPassword4jPasswordEncoder extends AbstractValidatingPasswordEncoder

Implementation of PasswordEncoder that uses the Password4j library with SCrypt hashing algorithm.

SCrypt is a memory-hard password hashing algorithm designed to be resistant to hardware brute-force attacks. It includes built-in salt generation and is particularly effective against ASIC and GPU-based attacks. This implementation leverages Password4j's SCrypt support which properly includes the salt in the output hash.

This implementation is thread-safe and can be shared across multiple threads.

Usage Examples:


 // Using default SCrypt settings (recommended)
 PasswordEncoder encoder = new ScryptPassword4jPasswordEncoder();

 // Using custom SCrypt configuration
 PasswordEncoder customEncoder = new ScryptPassword4jPasswordEncoder(
     ScryptFunction.getInstance(32768, 8, 1, 32));

Since:

7.0

See Also:

ScryptFunction
AlgorithmFinder.getScryptInstance()

Constructor Summary

Constructors

Constructor

Description

ScryptPassword4jPasswordEncoder()

Constructs an SCrypt password encoder using the default SCrypt configuration from Password4j's AlgorithmFinder.

ScryptPassword4jPasswordEncoder(com.password4j.ScryptFunction scryptFunction)

Constructs an SCrypt password encoder with a custom SCrypt function.
Method Summary

Modifier and Type

Method

Description

protected String

encodeNonNullPassword(String rawPassword)

protected boolean

matchesNonNull(String rawPassword, String encodedPassword)

protected boolean

upgradeEncodingNonNull(String encodedPassword)

Methods inherited from class org.springframework.security.crypto.password.AbstractValidatingPasswordEncoder
encode, matches, upgradeEncoding

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- ScryptPassword4jPasswordEncoder
  
  public ScryptPassword4jPasswordEncoder()
  
  Constructs an SCrypt password encoder using the default SCrypt configuration from Password4j's AlgorithmFinder.
- ScryptPassword4jPasswordEncoder
  
  public ScryptPassword4jPasswordEncoder(com.password4j.ScryptFunction scryptFunction)
  
  Constructs an SCrypt password encoder with a custom SCrypt function.
  
  Parameters:
  
  scryptFunction - the SCrypt function to use for encoding passwords, must not be null
  
  Throws:
  
  IllegalArgumentException - if scryptFunction is null
Method Details
- encodeNonNullPassword
  
  protected String encodeNonNullPassword(String rawPassword)
  
  Specified by:
  
  encodeNonNullPassword in class AbstractValidatingPasswordEncoder
- matchesNonNull
  
  protected boolean matchesNonNull(String rawPassword, String encodedPassword)
  
  Specified by:
  
  matchesNonNull in class AbstractValidatingPasswordEncoder
- upgradeEncodingNonNull
  
  protected boolean upgradeEncodingNonNull(String encodedPassword)
  
  Overrides:
  
  upgradeEncodingNonNull in class AbstractValidatingPasswordEncoder

Class ScryptPassword4jPasswordEncoder

Constructor Summary

Method Summary

Methods inherited from class org.springframework.security.crypto.password.AbstractValidatingPasswordEncoder

Methods inherited from class java.lang.Object

Constructor Details

ScryptPassword4jPasswordEncoder

ScryptPassword4jPasswordEncoder

Method Details

encodeNonNullPassword

matchesNonNull

upgradeEncodingNonNull