continuum-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Maria Odea Ching (JIRA)" <j...@codehaus.org>
Subject [jira] Commented: (CONTINUUM-1974) JDBC Password obfuscation support
Date Tue, 12 May 2009 06:47:44 GMT

    [ http://jira.codehaus.org/browse/CONTINUUM-1974?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=176073#action_176073
] 

Maria Odea Ching commented on CONTINUUM-1974:
---------------------------------------------

Btw, we tried using this patch in a different project which has a more or less similar configuration
as Continuum's jetty bundle and it worked fine. 

Maybe the adapter should be contributed to Jetty instead of Continuum? Currently, Jetty's
password obfuscation utility only works for mail passwords and not for database passwords
so this would be really useful. Other projects can use the adapter without pulling in a dependency
on Continuum..

> JDBC Password obfuscation support
> ---------------------------------
>
>                 Key: CONTINUUM-1974
>                 URL: http://jira.codehaus.org/browse/CONTINUUM-1974
>             Project: Continuum
>          Issue Type: New Feature
>          Components: Web - Security
>    Affects Versions: 1.2.3
>            Reporter: jan ancajas
>             Fix For: 1.3.3
>
>         Attachments: CONTINUUM-1974-continuum-commons.patch
>
>
> We are using jetty's JNDI lookup for initializing the dataSource, it would be good if
we can secure  the password parameter. As a start, we can use the obfuscation mechanism already
provided by jetty.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.codehaus.org/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

        

Mime
View raw message