ws-sandesha-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "indika priyantha kumara (JIRA)" <>
Subject [jira] Commented: (AXIS2-4725) Securing passwords in axis2.xml
Date Mon, 24 May 2010 16:24:25 GMT


indika priyantha kumara commented on AXIS2-4725:

My solution is based on the code in the Apache synapse [1]. It is a self-contained module.
I hope, it is better to add a syn external to it  if this patch would be applied. 

There is a basic description about my solution in both synapse documentation and WSO2 ESB
documentation [2]. I have improved that solution further.

The attached patch is to provide a global password provider that is responsible for securing
the passwords in the axis2 configuration. 

<protectedTokens> coma separated list of tokens </protectedTokens>
<passwordProvider> class of password provider </passwordProvider>

I will create separate JIRAs and attach patches for securing the passwords in transport configurations,
axis2 web app, etc ...   


> Securing passwords in axis2.xml 
> --------------------------------
>                 Key: AXIS2-4725
>                 URL:
>             Project: Axis2
>          Issue Type: Improvement
>    Affects Versions: nightly
>            Reporter: indika priyantha kumara
>         Attachments: secure-vault-add.patch
> Currently , the password in the axis2 configuration are plain text . This can be a security

This message is automatically generated by JIRA.
You can reply to this email to add a comment to the issue online.

To unsubscribe, e-mail:
For additional commands, e-mail:

View raw message