You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@manifoldcf.apache.org by "Karl Wright (JIRA)" <ji...@apache.org> on 2014/10/15 13:56:33 UTC

[jira] [Created] (CONNECTORS-1075) Provide a means of obfuscating database passwords in properties.xml and global-properties.xml

Karl Wright created CONNECTORS-1075:
---------------------------------------

             Summary: Provide a means of obfuscating database passwords in properties.xml and global-properties.xml
                 Key: CONNECTORS-1075
                 URL: https://issues.apache.org/jira/browse/CONNECTORS-1075
             Project: ManifoldCF
          Issue Type: Improvement
          Components: Framework core
    Affects Versions: Manifold 1.7.1
            Reporter: Karl Wright
            Assignee: Karl Wright
             Fix For: ManifoldCF 1.8, ManifoldCF 2.0


Obfuscating properties.xml entries would be designed to prohibit casual acquisition of database passwords.

The proposal would be to have a dual property fetch, as follows.  For a potentially-obfuscated property "x", the code would first look for "x.obfuscated".  If that property was found, it would de-obfuscate the results.  If not found, it would look for the property "x", and use those results un-obfuscated.

The full implementation of this ticket will also require support for command-line invocation of the Obfuscate class, so that obfuscated passwords can be generated.  The scripts supporting this would be delivered in a manner similar to that of the scripting engine.




--
This message was sent by Atlassian JIRA
(v6.3.4#6332)