PasswordHasherTest.java

package com.mastfrog.acteur.util;

import com.mastfrog.settings.SettingsBuilder;
import com.mastfrog.util.GUIDFactory;
import java.io.IOException;
import java.nio.charset.Charset;
import java.security.NoSuchAlgorithmException;
import static org.junit.Assert.assertFalse;
import static org.junit.Assert.assertNotEquals;
import static org.junit.Assert.assertNotNull;
import static org.junit.Assert.assertTrue;
import org.junit.Test;

/**
 *
 * @author Tim Boudreau
 */
public class PasswordHasherTest {

    @Test
    public void testCheckPassword() throws IOException, NoSuchAlgorithmException {
        assertTrue(true);
        PasswordHasher h = new PasswordHasher(new SettingsBuilder().build(), Charset.forName("UTF-8"), GUIDFactory.get());

        String pw = "password";
        String enc = h.encryptPassword(pw);
        assertNotNull(enc);

        String pw2 = "somethingElse";
        String enc2 = h.encryptPassword(pw2);
        assertNotNull(enc2);

        assertNotEquals(enc, enc2);

        boolean matches = h.checkPassword(pw2, enc2);
        assertTrue(matches);

        matches = h.checkPassword(pw, enc);
        assertTrue(matches);

        matches = h.checkPassword(pw2, enc);
        assertFalse(matches);

        matches = h.checkPassword(pw, enc2);
        assertFalse(matches);

        String old = "a:Du4EC8d82VujiPSlommA2XHrQLtUvytrowONoiG5q0yjG3Ed:4jhJV/hZ4Ab0liMsX0HDG/qJCIvgPCqyAeVB69n+ZdOWNWTXOCypD+WlzJELpKQ1/8tHL6jI709ogWTiJt0/9Q==";
        assertTrue("Something has broken password compatibility", h.checkPassword("somethingElse", old));
        old = "a:3wWOjtsJci7mL3wknhhtCsZnNmywjXI9w39Y2SiUVIfOaA2s:XZ6i/sDDGW0tEGYW3Bbcg1BitWugNm8DNQnx1p7CowRj9b0tkUQXRwqez60rSmRnBqOSRDw/4FUcg43fdliCZw==";
        assertTrue("Something has broken password compatibility", h.checkPassword("password", old));
    }
}