Open ahonor opened 12 years ago
Some places to start looking:
jasypt seems like a straightforward way to allow field-level encryption of certain fields, and external configuration of the encryption key.
Attribute could add an 'encrypted' boolean to flag whether the values need to be encrypted
For NodeValue we could perhaps add a subclass that has an 'encryptedValue' text field. Alternately we would have to modify NodeValue to have an 'encryptedValue' text field, and a boolean flag to indicate it should be used. Will have to experiment with the jasypt plugin to see how it treats nullable fields
Great. Very encouraging.
On Aug 23, 2012, at 12:06 PM, Greg Schueler notifications@github.com wrote:
jasypt seems like a straightforward way to allow field-level encryption of certain fields, and external configuration of the encryption key.
Attribute could add an 'encrypted' boolean to flag whether the values need to be encrypted
For NodeValue we could perhaps add a subclass that has an 'encryptedValue' text field. Alternately we would have to modify NodeValue to have an 'encryptedValue' text field, and a boolean flag to indicate it should be used. Will have to experiment with the jasypt plugin to see how it treats nullable fields
— Reply to this email directly or view it on GitHub.
Provide a means to declare that an attribute value be encrypted in the database.