OK, I see your point, although the key store has to remain 'secret'
somehow, using file-system dependent permissions I guess, otherwise
it's exposed as well. --DD
On 6/19/06, Alexey N. Solofnenko <[EMAIL PROTECTED]> wrote:
This can be done by requiring a key store in user home. Only people that
have some special certificates, can encrypt/decrypt date (SSH style
security). The decryption can be easily done with <scriptdef>. This is a
corresponding Java code:
SecretKeySpec skeySpec=new SecretKeySpec(readAll("key"), "AES");
Cipher cipher=Cipher.getInstance("AES");
cipher.init(Cipher.DECRYPT_MODE, skeySpec);
String value=new String(cipher.doFinal(buffer), "UTF-8")
It would be trivial to write a wrapper code for ANT. buffer has to be a
byte array. I would suggest using binhex conversion.
- Alexey.
Dominique Devienne wrote:
>> we would be interested in encrypting.
>
> But then it's a chicken-and-egg problem, no?
>
> Where are you going to store the passwords to decrypt the passwords
> read from properties files? --DD
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: [EMAIL PROTECTED]
> For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
