Re: How to encrypt db password in tomcat context.xml

2020-06-28 Thread Jürgen Weber
I'd just put some nice password as byte[] into Tomcat's source code and provide a way to have passwords in the configs encrypted with that nice password. > Use properties replacement so that in the xml config you have ${db.password} > and in conf/catalina.properties you put the password there.

Re: Tomcat Large Payload Truncated

2020-06-28 Thread Mark Thomas
On 28/06/2020 20:14, Bhavesh Mistry wrote: > Hi All, > > > I am running embedded *tomcat*-embed-core-9.0.36.jar and large payload > *179292* and HTTPS 1.1 traffic. When I use curl command with > transfer encoding or without, both request JSON payload is truncated, and > the application can not

Re: How to encrypt db password in tomcat context.xml

2020-06-28 Thread Jürgen Weber
> https://cwiki.apache.org/confluence/display/TOMCAT/Password Well, I know a chief open source app server that has the password to decrypt all passwords buried in its open source, and I know auditors who are good if root cannot read passwords at first sight. The reasoning behind that is that

Tomcat Large Payload Truncated

2020-06-28 Thread Bhavesh Mistry
Hi All, I am running embedded *tomcat*-embed-core-9.0.36.jar and large payload *179292* and HTTPS 1.1 traffic. When I use curl command with transfer encoding or without, both request JSON payload is truncated, and the application can not parse it. The smaller payload works fine. Both small

Re: How to encrypt db password in tomcat context.xml

2020-06-28 Thread Olaf Kock
On 28.06.20 19:50, Jürgen Weber wrote: I would like to know how to encrypt and decrypt the database password in context.xml when the application is running which also allow me to change the db password for the purpose of security. >>