[jboss-dev-forums] [JBoss AS 7 Development] - JBoss AS7 Securing Passwords
Gregory Charles
do-not-reply at jboss.com
Fri Jan 20 13:19:53 EST 2012
Gregory Charles [https://community.jboss.org/people/gregcharles] commented on the document
"JBoss AS7 Securing Passwords"
To view all comments on this document, visit: https://community.jboss.org/docs/DOC-17248#comment-8828
--------------------------------------------------
This seems to me to solve a problem we didn't have. In JBoss 7.0.2, I was able to encrypt the database password with this:
java -cp %JBOSS_HOME%\modules\org\picketbox\main\picketbox-4.0.1.jar;%JBOSS_HOME%\modules\org\jboss\logging\main\jboss-logging-3.0.1.GA.jar org.picketbox.datasource.security.SecureIdentityLoginModule password-to-encrypt
I don't need a "Vault" to hold the database password. Why would I?
What I do need is a way to encrypt the password into the Java keystore that holds the site certifcate used to enable https connections. I could do this in JBoss 4.2.3, but that mechanism no longer exists in JBoss 7. It's not at all clear to me from this article that the Vault helps me do this, or how I would make it work.
--------------------------------------------------
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.jboss.org/pipermail/jboss-dev-forums/attachments/20120120/fa485f1d/attachment.html
More information about the jboss-dev-forums
mailing list