Uploaded image for project: 'ONAP JIRA Security Issues'
  1. ONAP JIRA Security Issues
  2. OJSI-190

Portal stores users passwords encrypted instead of hashed

CloneClone+Clone++
    XMLWordPrintable

    Details

    • Type: Task
    • Status: Confirmed
    • Priority: High
    • Resolution: Unresolved
    • Affects Version/s: None
    • Fix Version/s: El Alto Release
    • Labels:

      Description

      Users passwords should be stored in irreversible form (which means hashed with salt) to protect them against being compromised.

      Additionally some sane rules on password should be enforced like it cannot be empty.

        Attachments

          Issue Links

          # Subject Branch Project Status CR V

            Activity

              People

              Assignee:
              talasila Manoop Talasila
              Reporter:
              kopasiak Krzysztof Opasiak
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: