Uploaded image for project: 'Jenkins'
  1. Jenkins
  2. JENKINS-60705

Add support for SCRAM-SHA-1(-PLUS), SCRAM-SHA-256(-PLUS)

    Details

    • Similar Issues:

      Description

      "When using the SASL SCRAM mechanism, the SCRAM-SHA-256-PLUS variant SHOULD be preferred over the SCRAM-SHA-256 variant, and SHA-256 variants [RFC7677] SHOULD be preferred over SHA-1 variants [RFC5802]".

      There is only SCRAM-SHA-1, there is not SCRAM-SHA-1-PLUS:

      There is not SCRAM-SHA-256(-PLUS):

      I add SCRAM-SHA-512(-PLUS): https://xmpp.org/extensions/inbox/hash-recommendations.html

      -PLUS variants:

      LDAP:

      • RFC5803: Lightweight Directory Access Protocol (LDAP) Schema for Storing Salted: Challenge Response Authentication Mechanism (SCRAM) Secrets: https://tools.ietf.org/html/rfc5803

      HTTP:

      IANA:

      Linked to:

        Attachments

          Activity

          There are no comments yet on this issue.

            People

            • Assignee:
              flow Florian Schmaus
              Reporter:
              neustradamus Neustradamus *
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated: