GitHub user bamaer edited a comment on the discussion: How to apply encryption on passwords if password is passed on Parameters and not in password fields
as explained in [the docs](https://hop.apache.org/manual/latest/password/passwords.html), Apache Hop uses password obfuscation for password fields in relational database connections and other password fields. This is not full encryption, we need to be able to send the clear text password in the connection. With obfuscation, instead of the clear text password, Apache Hop will write something like `Encrypted 2be98afc86aa7f2e4cb79ce10df90acde`. Ideally, you'll use a variable (e.g. `${MY_DB_PASSWORD}` in the connection field in your project and specify the password value in an [environment](https://hop.apache.org/manual/latest/projects/projects-environments.html) configuration file. Thi allows you to keep your code (project) and configuration (environments and environment configuration files) separate. As an alternative, If you don't want to store your passwords in a file, you could add parameters to your workflows and pipelines and pass the password as a [parameter](https://hop.apache.org/manual/latest/variables.html#_parameters) value in runtime. We plan to implement integration with secret stores in a future release, but that is not available yet. GitHub link: https://github.com/apache/hop/discussions/4639#discussioncomment-11412855 ---- This is an automatically sent email for [email protected]. To unsubscribe, please send an email to: [email protected]
