You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@tomee.apache.org by jl...@apache.org on 2012/11/08 11:23:35 UTC
svn commit: r1406997 -
/openejb/site/trunk/content/datasource-password-encryption.mdtext
Author: jlmonteiro
Date: Thu Nov 8 10:23:34 2012
New Revision: 1406997
URL: http://svn.apache.org/viewvc?rev=1406997&view=rev
Log:
Added some comments on the Datasource Encryption features following recent question on the list.
Modified:
openejb/site/trunk/content/datasource-password-encryption.mdtext
Modified: openejb/site/trunk/content/datasource-password-encryption.mdtext
URL: http://svn.apache.org/viewvc/openejb/site/trunk/content/datasource-password-encryption.mdtext?rev=1406997&r1=1406996&r2=1406997&view=diff
==============================================================================
--- openejb/site/trunk/content/datasource-password-encryption.mdtext (original)
+++ openejb/site/trunk/content/datasource-password-encryption.mdtext Thu Nov 8 10:23:34 2012
@@ -1,5 +1,10 @@
Title: DataSource Password Encryption
_Apache OpenEJB 3.1.2 or later required_
+
+_TomEE 1.5.0 switched from Apache Commons-DBCP to Tomcat-pool. On that specific version, password encryption is not
+available. You can still switch back to Apache Commons DBCP buy adding the following property: DataSourceCreator dbcp.
+On all following versions, the database encryption will be ported and hence available on Tomcat-pool as well._
+
<a name="DataSourcePasswordEncryption-Cipheringpasswords"></a>
# Ciphering passwords
Apache OpenEJB now provides an easy and extensible way to cipher databases
@@ -27,7 +32,9 @@ Default Plain text password example:
3DES ciphered password example.
Note that the built in 3DES implementation uses *a static key* to
-encode/decode your password.
+encode/decode your password. _It's only meant to be a sample on how to implement a Codec. On a real
+enterprise life, you should implement your how relying on an HSM for example._
+The easiest way to do it is to implement the *org.apache.openejb.resource.jdbc.cipher.PasswordCipher* interface.
<Resource id="MySQL Database" type="DataSource">
# MySQL example
@@ -68,11 +75,9 @@ openejb cipher - OpenEJB Cypher Tool
The OpenEJB Cipher tool is an OPTIONAL tool that allows you to use
`PasswordCipher` algorithm to encode/decode values.
-
-It can be used to deploy into an offline server, however in this scenario
-it simply copies the archive into the openejb.base/apps directory which is
-something that can be done manually with a simple copy command or drag and
-drop.
+
+*This tool isn't package by default on TomEE. It's only available on the standalone distribution. If
+you think that would be valuable to have it in TomEE as well, open a JIRA and let us know.*
The OpenEJB Cipher tool can be executed from any directory as long as
`<OPENEJB_HOME>/bin` is in the system PATH. Before running this tool you need