[WICKET-6730] Global access to secure random data - ASF JIRA

XML

Word

Printable

JSON

Details

Type: New Feature
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 9.0.0-M4
Fix Version/s: 9.0.0-M5
Component/s: wicket-core
Labels:
None

Description

Web applications often need secure random data, for example to generate keys for encryption or to generate nonces. In most cases, a simple SecureRandom may be enough. But for more demanding applications, it may be necessary to reseed the SecureRandom periodically or to use a different algorithm. With several SecureRandoms used throughout Wicket, this is becoming very hard (if not impossible).

SecuritySettings should contain a central implementation of a ISecureRandomSupplier to hold the SecureRandom and to generate random bytes.

Attachments

Activity

People

Assignee:: Emond Papegaaij

Reporter:: Emond Papegaaij

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 16/Jan/20 20:44

Updated:: 22/Jan/20 20:52

Resolved:: 16/Jan/20 21:02