[英]Where/how do you store application secrets(password, API KEY) in Spring Boot application
I want to encrypt sensitive data in application properties. 我想加密应用程序属性中的敏感数据。 I will use AES algorithm to encrypt/decrypt data. 我将使用AES算法来加密/解密数据。 The key to decrypt will be stored in ENV variables, accessing this key requires the same privileges as modifying production application. 解密密钥将存储在ENV变量中,访问此密钥需要与修改生产应用程序相同的特权。
What do you think about this approach? 您如何看待这种方法?
How do you protect sensitive data? 您如何保护敏感数据?
There are many ways: 有很多方法:
This is really too broad of a topic for Stackoverflow and is not really specific to Spring Boot or anything in particular. 对于Stackoverflow来说,这确实是一个太宽泛的话题,并且并不是特定于Spring Boot或任何特定事物。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.