[GUACAMOLE-1391] Add support for hashing passwords with SHA-256 in user-mapping.xml - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Minor
Resolution: Implemented
Affects Version/s: 1.3.0
Fix Version/s: 1.4.0
Component/s: guacamole-client
Labels:
None

Description

Currently, the `user-mapping.xml` file only supports plain-text or MD5. While it is typically expected that this authentication mechanism is only used for small proof-of-concept deployments, it may still be widely used for smaller deployments, like in a home-lab or small business with a limited IT team.

The changes I'm proposing would add support for the SHA-256 hashing algorithm to bring the authentication mechanism into the current cryptographic era. MD5 has been broken since near the turn of the century and SHA1 just a few years ago.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Andrew Bitson

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 29/Jul/21 22:13

Updated:: 30/Jul/21 12:17

Resolved:: 30/Jul/21 12:17