Username Password Authorizer

The Username Password Authorizer provides username and password-based authentication.

Fully qualified class name: AUTHTYPE=org.signserver.server.UsernamePasswordAuthorizer

The Username Password Authorizer requires a valid username and password. User accounts are configured by setting properties of the form shown below, where [NAME] is the username and [PASSWORD] is the clear-text password. In the second form, [HASHED_PASSWORD] should be replaced with the output of the digest algorithm specified in [HASH_ALGORITHM]. The third form uses a salt that is appended to the password before hashing it.

USER.[NAME] = [PASSWORD]
USER.[NAME] = [HASHED_PASSWORD]:[HASH_ALGORITHM]
USER.[NAME] = [HASHED_PASSWORD]:[HASH_ALGORITHM]:[SALT]

If a valid username and password are not supplied, the Worker throws an AuthorizationRequiredException which, in case of the HTTP interfaces, causes an HTTP Basic Authentication (RFC 2617).