Throw exception before hashing when password is null

Coreoz · Aug 24, 2023 · f978f9d · f978f9d
1 parent 6ddbf76
commit f978f9d
Showing 1 changed file with 26 additions and 22 deletions.
diff --git a/plume-admin-ws/src/main/java/com/coreoz/plume/admin/services/hash/BCryptHashService.java b/plume-admin-ws/src/main/java/com/coreoz/plume/admin/services/hash/BCryptHashService.java
@@ -1,22 +1,26 @@
-package com.coreoz.plume.admin.services.hash;
-
-import javax.inject.Singleton;
-
-import org.mindrot.jbcrypt.BCrypt;
-
-@Singleton
-public class BCryptHashService implements HashService {
-
-	private static final int BCRYPT_SALT_ROUND = 11;
-
-	@Override
-	public String hashPassword(String password) {
-		return BCrypt.hashpw(password, BCrypt.gensalt(BCRYPT_SALT_ROUND));
-	}
-
-	@Override
-	public boolean checkPassword(String candidate, String hashed) {
-		return BCrypt.checkpw(candidate, hashed);
-	}
-
-}
+package com.coreoz.plume.admin.services.hash;
+
+import javax.inject.Singleton;
+
+import com.google.common.base.Strings;
+import org.mindrot.jbcrypt.BCrypt;
+
+@Singleton
+public class BCryptHashService implements HashService {
+
+	private static final int BCRYPT_SALT_ROUND = 11;
+
+	@Override
+	public String hashPassword(String password) {
+        if (password == null) {
+            throw new IllegalArgumentException("Password must not be null or empty");
+        }
+		return BCrypt.hashpw(password, BCrypt.gensalt(BCRYPT_SALT_ROUND));
+	}
+
+	@Override
+	public boolean checkPassword(String candidate, String hashed) {
+		return BCrypt.checkpw(candidate, hashed);
+	}
+
+}