[CONNECTORS-1075] Provide a means of obfuscating database passwords in properties.xml and global-properties.xml - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: ManifoldCF 1.7.1
Fix Version/s: ManifoldCF 1.8, ManifoldCF 2.0
Component/s: Framework core
Labels:
None

Description

Obfuscating properties.xml entries would be designed to prohibit casual acquisition of database passwords.

The proposal would be to have a dual property fetch, as follows. For a potentially-obfuscated property "x", the code would first look for "x.obfuscated". If that property was found, it would de-obfuscate the results. If not found, it would look for the property "x", and use those results un-obfuscated.

The full implementation of this ticket will also require support for command-line invocation of the Obfuscate class, so that obfuscated passwords can be generated. The scripts supporting this would be delivered in a manner similar to that of the scripting engine.

Attachments

Activity

People

Assignee:: Karl Wright

Reporter:: Karl Wright

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 15/Oct/14 11:56

Updated:: 15/Oct/14 13:24

Resolved:: 15/Oct/14 13:24