search

codenvy-legacy / plugin-datasource

This repository is deprecated. Visit https://github.com/codenvy/che-plugins
Eclipse Public License 1.0
2 stars 10 forks source link

Encrypt the database password #198

Closed sunix closed 10 years ago

sunix commented 10 years ago

Encrypt the password of datasource configuration with a master password

sunix commented 10 years ago

Encryption and decryption are done server side Encryption of a text, can be performed with the Rest service (decryption is not exposed)

For the password encryption, the GWT datasource wizard request an encryption and stores the encrypted password in the password field. When a connection is requested, the SQL executor (server side) decrypt the password and execute the query.

Encryption/decryption is done with a master password that can be setted with a java system property. com.codenvy.security.masterpwd See https://github.com/codenvy/plugin-datasource/commit/207a48e4d52d918adfc9380f3a5436f80a34156d#diff-5f3e122ef237de3055975525f12724b9R50