Tigase Forge
Dashboards
Projects
Pull Requests
Issues
Builds
Packages
Code Search
server-core
Code
Pull Requests
Issues
List
Boards
Iterations
Timesheets
Builds
Packages
Statistics
Child Projects
OneDev 10.9.4
Documentation Support & Bug Report RESTful API Incompatibilities License Agreement Check Update
Projects tigase _server server-core Issues #1192
Obfuscate repository passwords (#1192)
Closed
wojciech.kapcia@tigase.net opened 4 years ago

Currently it was done in SchemaLoader (#issue #1187) but it would be good idea to take it further (especially if JDBC string may be passed as environment variable):

  • obfuscate it in logs when starting server
  • obfuscate in config-dump.properties file
wojciech.kapcia@tigase.net commented 3 years ago
  • Added JDBC URL obfuscator utility and used it during schema-upgrade/instlal as well during server startup
  • Added new parameter to @ConfigField annotation specifying type of the configuration option (Plain/Password/JdbcUrl) and obfuscating it accordingly in config-dump.
issue 1 of 1
Type
Task
Priority
Normal
Assignee
wojciech.kapcia@tigase.net
Version
tigase-server-8.2.0
Spent time
12h 15m
Related
Issue Votes (0)
Login to vote
Watchers (0)
Reference
tigase/_server/server-core#1192
Please wait...
Page is in error, reload to recover