ant-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Venkatesh Vijayakumar04" <>
Subject RE: Ant tasks to encrypt or decrypt passwords from propertyfiles
Date Tue, 20 Jun 2006 03:00:25 GMT


Try the following

Write a separate encryption java program

Write a separate decryption java program in such a way that when the
program is executed, it will refer the encrypted password stored in the
property file and gives the clear text password which is the output will
be stored in a separate property file.

In your case, you will be having the encrypted password in property file
so compile and run the decryption java program from ant using javac and
java task in ant.

As a result of the above step a property file with clear text password
will be stored.

Load the value of the property file in a property using loadproperty
task in ant

Delete the password property file immediately.

Refer the property name for subsequent build of password.


-----Original Message-----
From: Anderson, Rob (Global Trade) []
Sent: Tuesday, June 20, 2006 4:09 AM
To: Ant Users List
Subject: RE: Ant tasks to encrypt or decrypt passwords from

In many cases your best option is probably to prompt the user for the
password using the input task. This solves the problem of storing the
password in plain text in a file, but it requires that the user interact
with the ant build. Another option is to pass in the password on the
command line:

ant -Dpassword=something target

This is less desirable since another user could run ps -ef and see the
password in the process list (on unix).

-Rob A

> -----Original Message-----
> From: Alexey N. Solofnenko []
> Sent: Monday, June 19, 2006 1:20 PM
> To: Ant Users List
> Subject: Re: Ant tasks to encrypt or decrypt passwords from
> property files
> This can be done by requiring a key store in user home. Only
> people that have some special certificates, can
> encrypt/decrypt date (SSH style security). The decryption can
> be easily done with <scriptdef>. This is a corresponding Java code:
>         SecretKeySpec skeySpec=new
> SecretKeySpec(readAll("key"), "AES");
>         Cipher cipher=Cipher.getInstance("AES");
>         cipher.init(Cipher.DECRYPT_MODE, skeySpec);
>         String value=new String(cipher.doFinal(buffer), "UTF-8")
> It would be trivial to write a wrapper code for ANT. buffer
> has to be a byte array. I would suggest using binhex conversion.
> - Alexey.
> Dominique Devienne wrote:
> >> we would be interested in encrypting.
> >
> > But then it's a chicken-and-egg problem, no?
> >
> > Where are you going to store the passwords to decrypt the passwords
> > read from properties files? --DD
> >
> >
> ---------------------------------------------------------------------
> > To unsubscribe, e-mail: For
> additional
> > commands, e-mail:
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: For
> additional commands, e-mail:

To unsubscribe, e-mail:
For additional commands, e-mail:

**************** CAUTION - Disclaimer *****************
This e-mail contains PRIVILEGED AND CONFIDENTIAL INFORMATION intended solely for the use of
the addressee(s). If you are not the intended recipient, please notify the sender by e-mail
and delete the original message. Further, you are not to copy, disclose, or distribute this
e-mail or its contents to any other person and any such actions are unlawful. This e-mail
may contain viruses. Infosys has taken every reasonable precaution to minimize this risk,
but is not liable for any damage you may sustain as a result of any virus in this e-mail.
You should carry out your own virus checks before opening the e-mail or attachment. Infosys
reserves the right to monitor and review the content of all messages sent to or from this
e-mail address. Messages sent to or from this e-mail address may be stored on the Infosys
e-mail system.
***INFOSYS******** End of Disclaimer ********INFOSYS***

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message