[jboss-jira] [JBoss JIRA] Created: (SECURITY-543) Simplify / Centralise Datasource Password Encryption
Darran Lofthouse (JIRA)
jira-events at lists.jboss.org
Wed Nov 24 13:57:59 EST 2010
Simplify / Centralise Datasource Password Encryption
----------------------------------------------------
Key: SECURITY-543
URL: https://jira.jboss.org/browse/SECURITY-543
Project: PicketBox (JBoss Security and Identity Management)
Issue Type: Feature Request
Security Level: Public (Everyone can see)
Components: PicketBox
Reporter: Darran Lofthouse
Assignee: Anil Saldhana
Where the datasource passwords differ the current approach to encrypt a datasource password requires a one to one mapping between the datasource and the security domain, for deployments with a large number of datasources this means an equal number of security domains also need to be defined.
This feature request is to review the options available to simplify this mapping between the datasource configuration and the domain to decrypt the password.
One suggestion is to store the encrypted for of the password with the datasource and use only a single security domain to decrypt all passwords.
--
This message is automatically generated by JIRA.
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list