SCRAM (Salted Challenge Response Authentication Mechanism) is part of the family of Simple Authentication and Security Layer (SASL, RFC 4422) authentication mechanisms.
It is described as part of RFC 5802 and RFC7677.
This project will serve for the basis of PostgreSQL's JDBC driver SCRAM support (supported since PostgreSQL 10).
The code is licensed under the BSD "Simplified 2 Clause" license (see LICENSE).
This project aims to provide a complete clean-room implementation of SCRAM. It is written in Java and provided in a modular, re-usable way, independent of other software or programs.
Current functionality includes:
- Common infrastructure for building both client and server SCRAM implementations.
- A Client API for using SCRAM as a client.
- Support for both SHA-1 and SHA-256.
- Basic support for channel binding.
- No runtime external dependencies.
- Well tested (+75 tests).
Current limitations:
- Server API and integration tests will be added soon.
Please read Client's README.md.
Javadoc:
'common' is the module that contains code common to both client and server SCRAM projects. If you with to develop either a client or server API, you may very well build on top of this API. Import maven dependency:
<dependency>
<groupId>com.ongres.scram</groupId>
<artifactId>common</artifactId>
</dependency>
and check the Javadoc:
Please submit Merge Requests for code contributions.
Make sure to compile with mvn verify -Psafer before submitting a MR.
By making a contribution to this project, you certify that you adhere to requirements of the DCO by signing-off your commits (git commit -s).: