This ClientAuthenticator implementation provides the SCRAM-SHA-1 (Salted Challenge Response Authentication Mechanism with SHA-1) authentication mechanism.
SCRAM specifies the authentication message exchange between the client and the server. It uses the PBKDF2 algorithm from the Public-Key Cryptography Standards (PKCS) and has the following features:
- The password is never transmitted in plain text, only a hash of the password is transmitted.
- The server does not need to store the passwords in plain text (or encrypted); salted hashes of the passwords are sufficient.
- The protocol allows for authenticating the client against the server and also authentication the server against the client.
Direct Base Classes: ClientAuthenticator
Creates the SCRAMClientAuthenticator.
Destroys the SCRAMClientAuthenticator.
Credentials & clientCredentials
const Credentials & creds
static const std::string SCRAM_SHA1;
The name of the mechanism is "SCRAM-SHA-1".
static const std::string DEFAULT_CRED_MD5_SALT;