karaf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jean-Baptiste Onofré (JIRA) <j...@apache.org>
Subject [jira] Commented: (KARAF-34) Provide a way to have passwords encrypted and not in clear in the configuration files
Date Fri, 10 Sep 2010 06:57:33 GMT

    [ https://issues.apache.org/jira/browse/KARAF-34?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12907910#action_12907910
] 

Jean-Baptiste Onofré commented on KARAF-34:
-------------------------------------------

Yes, Guillaume.

I propose:
- to create an encryption feature including commons-codec, commons-lang and jasypt servicemix
bundle + a karaf encryption bundle which register two password related services: one to encrypt,
one to check password
- in the AbstractKarafLoginModule, the default encryption algorithm is plain (no encryption)
- if the encryption algorithm is different from plain (MD5, SHA-1, etc), the AbstractKarafLoginModule
delegates the check and encrypt to the encryption service. If the service is not registered,
I raise an IllegalStateException.

What do you think ?

> Provide a way to have passwords encrypted and not in clear in the configuration files
> -------------------------------------------------------------------------------------
>
>                 Key: KARAF-34
>                 URL: https://issues.apache.org/jira/browse/KARAF-34
>             Project: Karaf
>          Issue Type: New Feature
>            Reporter: Guillaume Nodet
>            Assignee: Jean-Baptiste Onofré
>


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.


Mime
View raw message