Red Hat Bugzilla – Bug 1252773
[QE] Insufficient description of digestCallback for UsernamePasswordLoginModule
Last modified: 2015-10-20 09:00:20 EDT
Book: Login Module Reference
Section: 2.2. UsernamePasswordLoginModule
1) For exactness there should be rather mentioned fully-qualified name (FQN) which is org.jboss.crypto.digest.DigestCallback in sentence "The class name of the DigestCallback implementation that includes pre/post digest content like salts for hashing the input password. "
2) Description of digestCallback option for UsernamePasswordLoginModule contains sentence "Only used if hashAlgorithm has been specified.". However it also depends on hashUserPassword option which has to be set to true.
Suggestions for improvement:
Replace description with "The class name of the org.jboss.crypto.digest.DigestCallback implementation that includes pre/post digest content like salts for hashing the input password. Only used if hashAlgorithm has been specified and hashUserPassword is set to true."