Details
-
Improvement
-
Status: Closed
-
Minor
-
Resolution: Implemented
-
1.3.0
-
None
Description
Currently, the `user-mapping.xml` file only supports plain-text or MD5. While it is typically expected that this authentication mechanism is only used for small proof-of-concept deployments, it may still be widely used for smaller deployments, like in a home-lab or small business with a limited IT team.
The changes I'm proposing would add support for the SHA-256 hashing algorithm to bring the authentication mechanism into the current cryptographic era. MD5 has been broken since near the turn of the century and SHA1 just a few years ago.