cloudstack-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mike Tutkowski <mike.tutkow...@solidfire.com>
Subject Re: Storing passwords in the DB
Date Tue, 02 Sep 2014 20:47:53 GMT
Thanks, Amogh

In my case, I'm storing the password in the storage_pool_details table's
value field. Not all cells in this column will need to be encrypted,
though. What do you suggest there?


On Tue, Sep 2, 2014 at 2:28 PM, Amogh Vasekar <amogh.vasekar@citrix.com>
wrote:

> Hi,
> You can add @Encrypt tag to the field and it would be stored in encrypted
> form in the DB, and decrypted automatically when reading. It uses the key
> file provided in db.properties for encryption.
> You can check many of the VOs, for example UserVO, as a reference.
>
> HTH
> Amogh
>
>
> On 9/2/14 12:38 PM, "Mike Tutkowski" <mike.tutkowski@solidfire.com> wrote:
>
> >OK - thanks!
> >
> >
> >On Tue, Sep 2, 2014 at 1:33 PM, Wido den Hollander <wido@widodh.nl>
> wrote:
> >
> >>
> >>
> >> On 02-09-14 21:29, Mike Tutkowski wrote:
> >>
> >>> Thanks, Wido
> >>>
> >>> Do you happen to know a relevant class off the top of your head?
> >>>
> >>>
> >> No sorry, but if you search for where it fetches the VNC password for
> >>KVM
> >> VMs you should find it.
> >>
> >> It's probably the DB layer which does the encryption and decryption.
> >>
> >> Wido
> >>
> >>
> >>
> >>> On Tue, Sep 2, 2014 at 1:25 PM, Wido den Hollander <wido@widodh.nl>
> >>> wrote:
> >>>
> >>>
> >>>>
> >>>> On 02-09-14 21:22, Mike Tutkowski wrote:
> >>>>
> >>>>  Hi,
> >>>>>
> >>>>> I was wondering what our current "best practices" are around storing
> >>>>> passwords in the DB?
> >>>>>
> >>>>> For example, if you want to store the username and password of a
> >>>>> resource
> >>>>> that CloudStack manages, how do we recommend storing the password?
> >>>>>
> >>>>>
> >>>>>  Using the build-in encryption mechanism? CloudStack also saves
the
> >>>>>VNC
> >>>> passwords for KVM that way for example.
> >>>>
> >>>> Wido
> >>>>
> >>>>   Thanks!
> >>>>
> >>>>>
> >>>>>
> >>>>>
> >>>
> >>>
> >
> >
> >--
> >*Mike Tutkowski*
> >*Senior CloudStack Developer, SolidFire Inc.*
> >e: mike.tutkowski@solidfire.com
> >o: 303.746.7302
> >Advancing the way the world uses the cloud
> ><http://solidfire.com/solution/overview/?video=play>* *
>
>


-- 
*Mike Tutkowski*
*Senior CloudStack Developer, SolidFire Inc.*
e: mike.tutkowski@solidfire.com
o: 303.746.7302
Advancing the way the world uses the cloud
<http://solidfire.com/solution/overview/?video=play>*™*

Mime
  • Unnamed multipart/alternative (inline, None, 0 bytes)
View raw message