[
https://issues.apache.org/jira/browse/SYNAPSE-376?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12609119#action_12609119
]
Andreas Veithen commented on SYNAPSE-376:
-----------------------------------------
This looks quite good. I would add as a requirement that all this should be
completely optional, i.e. people should be able to continue using plaintext
passwords without the need to set up any new config files. Maybe we should have
some sort of plugin system for this: there would be an interface SecretManager
and two implementations PlaintextSecretManager and EncryptedSecretManager. At
startup Synapse would register a PlaintextSecretManager as default. Then we can
have a Startup implementation that configures an EncryptedSecretManager and
replaces the default one. We only need a place to hold the reference to the
configured SecretManager. SynapseConfiguration would be a good place as it is
also there that we hold the reference to the Registry implementation.
> Securing password in the datasource definition
> -----------------------------------------------
>
> Key: SYNAPSE-376
> URL: https://issues.apache.org/jira/browse/SYNAPSE-376
> Project: Synapse
> Issue Type: Improvement
> Reporter: indika priyantha kumara
> Assignee: indika priyantha kumara
> Fix For: FUTURE
>
>
> Currently ,passwords in the datasource definition are in clear text format.
> (In synapse.properties). Those have to be encrypted.
--
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
