org.springframework.security.crypto.password.AbstractValidatingPasswordEncoder

org.springframework.security.crypto.password4j.BcryptPassword4jPasswordEncoder

All Implemented Interfaces:: PasswordEncoder

public class BcryptPassword4jPasswordEncoder extends AbstractValidatingPasswordEncoder

Implementation of PasswordEncoder that uses the Password4j library with BCrypt hashing algorithm.

BCrypt is a well-established password hashing algorithm that includes built-in salt generation and is resistant to rainbow table attacks. This implementation leverages Password4j's BCrypt support which properly includes the salt in the output hash.

This implementation is thread-safe and can be shared across multiple threads.

Usage Examples:


 // Using default BCrypt settings (recommended)
 PasswordEncoder encoder = new BcryptPassword4jPasswordEncoder();

 // Using custom round count
 PasswordEncoder customEncoder = new BcryptPassword4jPasswordEncoder(BcryptFunction.getInstance(12));

Since:

7.0

See Also:

BcryptFunction
AlgorithmFinder.getBcryptInstance()

Constructor Summary

Constructors

Constructor

Description

BcryptPassword4jPasswordEncoder()

Constructs a BCrypt password encoder using the default BCrypt configuration from Password4j's AlgorithmFinder.

BcryptPassword4jPasswordEncoder(com.password4j.BcryptFunction bcryptFunction)

Constructs a BCrypt password encoder with a custom BCrypt function.
Method Summary

Modifier and Type

Method

Description

protected String

encodeNonNullPassword(String rawPassword)

protected boolean

matchesNonNull(String rawPassword, String encodedPassword)

protected boolean

upgradeEncodingNonNull(String encodedPassword)

Methods inherited from class org.springframework.security.crypto.password.AbstractValidatingPasswordEncoder
encode, matches, upgradeEncoding

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- BcryptPassword4jPasswordEncoder
  
  public BcryptPassword4jPasswordEncoder()
  
  Constructs a BCrypt password encoder using the default BCrypt configuration from Password4j's AlgorithmFinder.
- BcryptPassword4jPasswordEncoder
  
  public BcryptPassword4jPasswordEncoder(com.password4j.BcryptFunction bcryptFunction)
  
  Constructs a BCrypt password encoder with a custom BCrypt function.
  
  Parameters:
  
  bcryptFunction - the BCrypt function to use for encoding passwords, must not be null
  
  Throws:
  
  IllegalArgumentException - if bcryptFunction is null
Method Details
- encodeNonNullPassword
  
  protected String encodeNonNullPassword(String rawPassword)
  
  Specified by:
  
  encodeNonNullPassword in class AbstractValidatingPasswordEncoder
- matchesNonNull
  
  protected boolean matchesNonNull(String rawPassword, String encodedPassword)
  
  Specified by:
  
  matchesNonNull in class AbstractValidatingPasswordEncoder
- upgradeEncodingNonNull
  
  protected boolean upgradeEncodingNonNull(String encodedPassword)
  
  Overrides:
  
  upgradeEncodingNonNull in class AbstractValidatingPasswordEncoder

Class BcryptPassword4jPasswordEncoder

Constructor Summary

Method Summary

Methods inherited from class org.springframework.security.crypto.password.AbstractValidatingPasswordEncoder

Methods inherited from class java.lang.Object

Constructor Details

BcryptPassword4jPasswordEncoder

BcryptPassword4jPasswordEncoder

Method Details

encodeNonNullPassword

matchesNonNull

upgradeEncodingNonNull