tomcat-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Mohamed Tagari <>
Subject security of server.xml in tomcat
Date Mon, 09 Jun 2003 14:31:49 GMT

Is there any way of instantiating the password and username 
parameters for connecting to a database in the application code rather 
than having it as plain text in the server.xml. 

As having the username and password as plain text is not 
very secure..

Any help/information will be apprectiated..

The database will be containing sensitive information, hence all passwords 
and usernames have to be protected..

// java code
Context init = new InitialContext();
Context ctx = (Context) init.lookup("java:comp/env");
DataSource ds = (DataSource) ctx.lookup("jdbc/myoracle");

// extract from server.xml
<Resource name="jdbc/myoracle" auth="Container"

<ResourceParams name="jdbc/myoracle">


To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message