我正在为带有 Spring Boot 的在线商店在 Java 中创建 REST API,我想将用户密码安全地存储在数据库中,为此我使用 Spring Security 附带的 BCrypt,我使用 MySQL 和 JPA-Hibernate 进行持久化.
我正在按如下方式实施它:
这是用户实体:
@Entity
@SelectBeforeUpdate
@DynamicUpdate
@Table (name = "USER")
public class User {
@Id
@GeneratedValue
@Column(name = "USER_ID")
private Long userId;
@Column(name = "ALIAS")
private String alias;
@Column(name = "NAME")
private String name;
@Column(name = "LAST_NAME")
private String lastName;
@Column(name = "TYPE")
private String type;
@Column(name = "PASSWORD")
private String password;
public String getPassword() {
return password;
}
/**
* When adding the password …