Encrypting sensitive information in JBoss configuration
Question
The standard data source configuration in JBoss requires the username and password of the database user to be in the xxx-ds.xml file. If I define my data source as a c3p0 mbean I encounter the same issue.
Is there a standard way to have the user and password encrypted? What is a good place to save the key?
This of course relevant to tomcat too - context.xml files, spring configuration files, etc.
2 answers
solution1
6 ACCPTED 2009-05-11 15:54:53
那里有一个Wiki文档: http : //www.jboss.org/community/docs/DOC-9703对此进行了描述。
solution2
1 2009-10-20 08:43:16
for the spring part, you can use your own extension of spring's PropertyPlaceholderConfigurer with the String convertPropertyValue(String originalValue) overridden. As the javadoc for the method mentions it (actually in superclass PropertyResourceConfigurer):
Convert the given property value from the properties source to the value that should be applied.
The default implementation simply returns the original value. Can be overridden in subclasses, for example to detect encrypted values and decrypt them accordingly.
This means you can configure your datasource with ${encoded.value} in the spring xml file, and decode the value before injecting the decoded value into the datasource.
The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.