Password encryption
For added security, consider encrypting your passwords in the application.yaml file. This feature is only supported for JAR (Spring Boot) distributables.
The following table identifies which passwords can be encrypted and where you can find them in the application.yaml file:
File section | Settings |
---|---|
jetty > ssl |
|
serverSettings |
|
serverSettings > samlSettings |
|
serverSettings > accountManagement > smtpServer |
|
cassandraCluster |
|
Procedure: Encrypting passwords
Start
- Run the GWS application with the --encrypt parameter followed by the password you need to encrypt. For example:
$ java -jar gws.jar --encrypt ops CRYPT:an03xPrxLAu9p==
The GWS application only encrypts and prints the password. The server won't actually start.
- Copy the printed encrypted password and paste into the application.yaml file. For example:
opsUserName: ops opsUserPassword: CRYPT:an03xPrxLAu9p==
The server only decrypts passwords that start with the CRYPT: prefix. Passwords without the CRYPT: prefix are considered plain text and remain unmodified.
End
This page was last edited on October 31, 2023, at 13:33.
Comments or questions about this documentation? Contact us for support!