karaf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jean-Baptiste Onofré (JIRA) <j...@apache.org>
Subject [jira] Commented: (KARAF-34) Provide a way to have passwords encrypted and not in clear in the configuration files
Date Tue, 07 Sep 2010 18:02:33 GMT

    [ https://issues.apache.org/jira/browse/KARAF-34?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12906909#action_12906909
] 

Jean-Baptiste Onofré commented on KARAF-34:
-------------------------------------------

I think that we need to consider two kinds of passwords:
- the passwords used in JAAS. This kind of passwords can be one-way crypted as the user retype
it. I'm fine to implement the enhancement in the KarafAbstractLoginModule.
- the "resources" passwords used internally in Karaf. This kind of passwords is not related
at all to JAAS. For example, we can imagine that Karaf provide a kind of cypher service to
crypt/uncrypt some properties such as database connection password, RMI registry connection
password, etc.

We can consider the enhancement in two steps. I begin with the first one.

> Provide a way to have passwords encrypted and not in clear in the configuration files
> -------------------------------------------------------------------------------------
>
>                 Key: KARAF-34
>                 URL: https://issues.apache.org/jira/browse/KARAF-34
>             Project: Karaf
>          Issue Type: New Feature
>            Reporter: Guillaume Nodet
>            Assignee: Jean-Baptiste Onofré
>


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message