The issue is for sure known. But i cannot find any solution. I'm using spring boot cloud config server to serve all properties values (encrypted) by {cipher} expression. It uses keystore located in the same system. But password to the keystore is in plain text. The question is there a possibility to some how encrypt the keystore password?
Thanks in advance!
Its like creating a key for another key using a passphrase, multiple times you do that still will end having some passphrase in repository (like bitbucket).
Better to encrypt all passwords using config server encrypt.key: "{$somepassphrase}" and store this passphrase(master key) as env variable and pass it using Jenkins while generating a pipeline.
I completely agree with @Quagaar that the best way is to actually store it in an environment variable and have the application.properties
read from there. Something like server.ssl.key-store-password=${KEY_STORE_PASSWORD}
and set the environment variable in the run configurations for IDE or Export command on your terminal.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.