[jira] Commented: (KARAF-34) Provide a way to have passwords encrypted and not in clear in the configuration files

JIRA Thu, 09 Sep 2010 13:29:15 -0700

    [ 
https://issues.apache.org/jira/browse/KARAF-34?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12907771#action_12907771
 ]


Jean-Baptiste Onofré commented on KARAF-34:
-------------------------------------------

After discussing with Guillaume, overriding callback has a huge impact on JAAS 
clients.

I updated the AbstractKarafLoginModule to use jasypt and provide "util" methods 
to manipulate password.

See revision 995565.

The Karaf distributions have been updated too to load Apache ServiceMix Jasypt 
bundle at startup (required by JAAS Module bundle).

Next steps are:
- use these password methods in login modules (such as the 
PropertiesLoginModule)
- update the PropertiesLoginModule to automatically crypt password provided in 
clear

Any comments are welcome.

> Provide a way to have passwords encrypted and not in clear in the 
> configuration files
> -------------------------------------------------------------------------------------
>
>                 Key: KARAF-34
>                 URL: https://issues.apache.org/jira/browse/KARAF-34
>             Project: Karaf
>          Issue Type: New Feature
>            Reporter: Guillaume Nodet
>            Assignee: Jean-Baptiste Onofré
>


-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.

[jira] Commented: (KARAF-34) Provide a way to have passwords encrypted and not in clear in the configuration files

Reply via email to