You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@continuum.apache.org by "Emmanuel Venisse (JIRA)" <ji...@codehaus.org> on 2009/05/12 07:26:44 UTC

[jira] Commented: (CONTINUUM-1974) JDBC Password obfuscation support

    [ http://jira.codehaus.org/browse/CONTINUUM-1974?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=176066#action_176066 ] 

Emmanuel Venisse commented on CONTINUUM-1974:
---------------------------------------------

In the patch, SecuredDataSourceAdapter class isn't used or do I miss something?

> JDBC Password obfuscation support
> ---------------------------------
>
>                 Key: CONTINUUM-1974
>                 URL: http://jira.codehaus.org/browse/CONTINUUM-1974
>             Project: Continuum
>          Issue Type: New Feature
>          Components: Web - Security
>    Affects Versions: 1.2.3
>            Reporter: jan ancajas
>             Fix For: 1.3.3
>
>         Attachments: CONTINUUM-1974-continuum-commons.patch
>
>
> We are using jetty's JNDI lookup for initializing the dataSource, it would be good if we can secure  the password parameter. As a start, we can use the obfuscation mechanism already provided by jetty.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira