Password Encoder

The password encoder describes the type of password encryption in use at your site, if any.

The /WEB-INF/config/context/security/afm_users/password-encoder/archibus /password-encoder.xml file specifies which encoding is in use.

For example:

<bean id="passwordEncoder"
		class="com.archibus.security.PasswordEncoderVersion2Impl"
		p:useEncoding="false">	
		<!-- Use password encoding. If value is true, passwords will be stored in encoded format. -->
</bean>
        

The password encoder to migrate to is specified as passwordEncoderMigrateTo bean in /WEB-INF/config/context/security/afm_users/password-manager.xml .

The default settings for the passwordEncoderMigrateTo are the same as for the default password encoder. This prevents users from locking themselves out of the system by accidentally using the “Passwords Encoding Migration Wizard” before they have deliberately configured the system for a new encoding.

Most sites leave the Security Group of the Archibus Workflow Rules table setting such that only the members of the SYSTEM MGR security group are able to invoke the password encoding workflow rules.