I am trying to solve a security issue with my webapp. We are using tomcat's connection pooling for our webapp. The database username and password be specified in the server.xml file (as shown below).
Is there a way to encrypt the password, and tomcat should decrypt the password before establishing the database connection. We are trying to do this without changing the tomcat code itself. Is it a setting in tomocat, or is there a 3rd party software? Any suggestions/solutions are appreciated. Thanks <Resource name="jdbc/iOQDB" auth="Container" type="javax.sql.DataSource"/> <ResourceParams name="jdbc/iOQDB"> <parameter> <name>username</name> <value>myuser</value> </parameter> <parameter> <name>password</name> <value>mypassword</value> </parameter> </ResourceParams> Thanks! --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
