The configuration file contains many passwords (database, TLS certs, keys) that should not be plaintext. Using Jasypt, we can encrypt these values and then provide the password outside the runtime.
As a first step, we should encrypt the database password, as there is already an alternative for key passwords.
Krish1979
commented
5 years ago
The configuration file contains many passwords (database, TLS certs, keys) that should not be plaintext. Using Jasypt, we can encrypt these values and then provide the password outside the runtime.
As a first step, we should encrypt the database password, as there is already an alternative for key passwords.