Skip to content

Document NoOpPasswordEncoder will not be removed #8506

New issue
New issue
Closed
#8508
Closed
Document NoOpPasswordEncoder will not be removed#8506
#8508
Assignees
rwinch
Labels
in: coreAn issue in spring-security-corestatus: backportedAn issue that has been backported to maintenance branchestype: bugA general bug
Milestone
 
5.4.0-M2
@rwinch

Description

@rwinch
rwinch
opened on May 8, 2020

While, NoOpPasswordEncoder is marked as deprecated we should clearly indicate that it is not going to be removed. Many of the other insecure PasswordEncoder implementations (i.e. MessageDigestPasswordEncoder) have the following in the deprecation warning:

There are no plans to remove this support. It is deprecated to indicate that this is a legacy implementation and using it is considered insecure.

We should add the same to NoOpPasswordEncoder

See gh-8498

Metadata

Metadata

Assignees

Labels

in: coreAn issue in spring-security-corestatus: backportedAn issue that has been backported to maintenance branchestype: bugA general bug

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions