Bcrypt as password hashing method in the backend

Change-Id: I5ed802c35ade8ba5da4d21f2a8c22d0198490885 Signed-off-by: ac2550 <ac2550@intl.att.com> Issue-ID: CLAMP-143
author: ac2550 <ac2550@intl.att.com> 2018-03-22 16:50:16 +0100
committer: Sébastien Determe <sd378r@intl.att.com> 2018-03-22 16:23:34 +0000
commit: 3308b5439cb1d046398744e4d913ece518de9532 (patch)
tree: 91ae5845341f724fa3b294d5c3a96b0db441b855 /README.md
parent: 36647a6e6dedf4d4fb82da40ab8bc99cd137ad1d (diff)
1 files changed, 16 insertions, 1 deletions
diff --git a/README.md b/README.md
index ea061ce3c..f9a3414a1 100644
--- a/README.md
+++ b/README.md
@@ -91,4 +91,19 @@ With the default log settings, all logs will be generated into console and into
 
 ### Api
 
-You can see the swagger definition for the jaxrs apis at `/restservices/clds/v1/openapi.json`
-\ No newline at end of file
+You can see the swagger definition for the jaxrs apis at `/restservices/clds/v1/openapi.json`
+
+
+## Clamp Credentials
+
+Credentials should be specified in `src/main/resources/clds/clds-users.json`. You might specify you own credential file by redefining the `clamp.config.files.cldsUsers` in `application.properties`.
+
+Passwords should be hashed using md5, then using Bcrypt :
+```
+# pip3 install bcrypt  # if you don't have the bcrypt python lib installed, should be done once.
+# python3 -c 'import bcrypt; import hashlib; m = hashlib.md5(); m.update("password".encode()); m.hexdigest(); print(bcrypt.hashpw(m.hexdigest().encode(), bcrypt.gensalt(rounds=10, prefix=b"2a")))'
+```
+
+Default credentials are admin/password and cs0008/password.
+
+
author	ac2550 <ac2550@intl.att.com>	2018-03-22 16:50:16 +0100
committer	Sébastien Determe <sd378r@intl.att.com>	2018-03-22 16:23:34 +0000
commit	3308b5439cb1d046398744e4d913ece518de9532 (patch)
tree	91ae5845341f724fa3b294d5c3a96b0db441b855 /README.md
parent	36647a6e6dedf4d4fb82da40ab8bc99cd137ad1d (diff)