Update MappedPassword and PasswordField to use JBCrypt
Upgrade MappedPassword and PasswordField to use JBCrypt for password storage to make it harder to do dictionary attacks even if the password DB is compromised.
The upgrade should be "in place" such that existing databases will work just fine, but when passwords are changed, the new hashing mechanism is used.
The upgrade should be "in place" such that existing databases will work just fine, but when passwords are changed, the new hashing mechanism is used.
Leave a comment