You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@manifoldcf.apache.org by "Karl Wright (JIRA)" <ji...@apache.org> on 2014/10/15 13:56:33 UTC
[jira] [Created] (CONNECTORS-1075) Provide a means of obfuscating
database passwords in properties.xml and global-properties.xml
Karl Wright created CONNECTORS-1075:
---------------------------------------
Summary: Provide a means of obfuscating database passwords in properties.xml and global-properties.xml
Key: CONNECTORS-1075
URL: https://issues.apache.org/jira/browse/CONNECTORS-1075
Project: ManifoldCF
Issue Type: Improvement
Components: Framework core
Affects Versions: Manifold 1.7.1
Reporter: Karl Wright
Assignee: Karl Wright
Fix For: ManifoldCF 1.8, ManifoldCF 2.0
Obfuscating properties.xml entries would be designed to prohibit casual acquisition of database passwords.
The proposal would be to have a dual property fetch, as follows. For a potentially-obfuscated property "x", the code would first look for "x.obfuscated". If that property was found, it would de-obfuscate the results. If not found, it would look for the property "x", and use those results un-obfuscated.
The full implementation of this ticket will also require support for command-line invocation of the Obfuscate class, so that obfuscated passwords can be generated. The scripts supporting this would be delivered in a manner similar to that of the scripting engine.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)