PasswordEncoder is a Java framework for hashing password.
This framework targets to provide password encoder for the following crypto functions:
- BCrypt
- Scrypt
- Argon2
So far, only BCrypt has been implemented.
Clone and install this project:
git clone https://github.com/jupiter-projects/passwordencoder
cd passwordencoder
git checkout 1.0.1
./mvnw install<dependency>
<groupId>com.julianjupiter</groupId>
<artifactId>passwordencoder</artifactId>
<version>1.0.1</version>
</dependency>implementation 'com.julianjupiter:passwordencoder:1.0.1'This framework uses jBcrypt library.
To use BCrypt function, it needs an instance of BCryptPasswordEncoder. There are many ways to do so:
PasswordEncoder passwordEncoder = BCryptPasswordEncoder.create();PasswordEncoder passwordEncoder = PasswordEncoderFactory.create()
.get("bcrypt")
.orElse(BCryptPasswordEncoder.create());PasswordEncoder passwordEncoder = PasswordEncoderFactory.create()
.get(CryptoType.BCRYPT)
.orElse(BCryptPasswordEncoder.create());// For this framework, BCryptPasswordEncoder is intended to be the default password encoder
PasswordEncoder passwordEncoder = PasswordEncoder.create();PasswordEncoder passwordEncoder = PasswordEncoder.create("bcrypt");PasswordEncoder passwordEncoder = PasswordEncoder.create(CryptoType.BCRYPT);Then, use hash(password) method to get hashed password:
String password = "mypassword";
String hashedPassword = passwordEncoder.hash(password);To validate if given password and hashed password match, use verify(password, hashedPassword) method:
String password = "mypassword";
String hashedPassword = // retrieve hashed password from database/storage
boolean matched = passwordEncoder.verify(password, hashedPassword);