From 50477b4d242b12313d43d30dcfdb6d5dfde0344c Mon Sep 17 00:00:00 2001
From: Julien Lancelot <julien.lancelot@sonarsource.com>
Date: Thu, 9 Jan 2020 13:11:23 +0100
Subject: SONAR-12893 Disable password check in QA to make it faster

---
 .../org/sonar/server/authentication/CredentialsLocalAuthentication.java  | 1 +
 1 file changed, 1 insertion(+)

(limited to 'server/sonar-webserver-auth')

diff --git a/server/sonar-webserver-auth/src/main/java/org/sonar/server/authentication/CredentialsLocalAuthentication.java b/server/sonar-webserver-auth/src/main/java/org/sonar/server/authentication/CredentialsLocalAuthentication.java
index 3fd0966fa5f..de8a469a7bc 100644
--- a/server/sonar-webserver-auth/src/main/java/org/sonar/server/authentication/CredentialsLocalAuthentication.java
+++ b/server/sonar-webserver-auth/src/main/java/org/sonar/server/authentication/CredentialsLocalAuthentication.java
@@ -185,6 +185,7 @@ public class CredentialsLocalAuthentication {
   private static final class BcryptFunction implements HashFunction {
     @Override
     public AuthenticationResult checkCredentials(UserDto user, String password) {
+      // This behavior is overridden in most of integration tests for performance reasons, any changes to BCrypt calls should be propagated to Byteman classes
       if (!BCrypt.checkpw(password, user.getCryptedPassword())) {
         return new AuthenticationResult(false, "wrong password");
       }
-- 
cgit v1.2.3