synapse-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "indika priyantha kumara (JIRA)" <j...@apache.org>
Subject [jira] Commented: (SYNAPSE-376) Securing password in the datasource definition
Date Sun, 29 Jun 2008 14:33:45 GMT

    [ https://issues.apache.org/jira/browse/SYNAPSE-376?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12609114#action_12609114
] 

indika priyantha kumara commented on SYNAPSE-376:
-------------------------------------------------

I hope to change ""keystore-truststore-password.properties"" to  a "plain-text.properties"

And it will look like as follows 

onetime=true| false

keystore.password=plain text
truststore.password=plain text

# passwords the you want to secure (without encrypting )

admin= admin123

If the ontime=true , then , after reading this file, file will be deleted. Otherwise, keep
without deleting . Then, for production environments this need to be  ontime=true  and for
developments environments ontime=false.

Now, for securing password , there are two options - one time passwords with "paint-text.properties"
and using "cipher-text.properties".


> Securing password in the datasource definition 
> -----------------------------------------------
>
>                 Key: SYNAPSE-376
>                 URL: https://issues.apache.org/jira/browse/SYNAPSE-376
>             Project: Synapse
>          Issue Type: Improvement
>            Reporter: indika priyantha kumara
>            Assignee: indika priyantha kumara
>             Fix For: FUTURE
>
>
> Currently ,passwords in the datasource definition are in clear text format. (In synapse.properties).
Those have to be encrypted. 

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@synapse.apache.org
For additional commands, e-mail: dev-help@synapse.apache.org


Mime
View raw message