Bug 780285 (SOA-2688)

Summary: Encrypted passwords in jbossesb-properties.xml in SOA-P 4.x and 5.x
Product: [JBoss] JBoss Enterprise SOA Platform 4 Reporter: Roger Hui <rhui>
Component: JBossESBAssignee: tcunning
Status: NEW --- QA Contact:
Severity: high Docs Contact:
Priority: high    
Version: 4.3 CP02CC: kevin.conner
Target Milestone: ---   
Target Release: FUTURE   
Hardware: Unspecified   
OS: Unspecified   
URL: http://jira.jboss.org/jira/browse/SOA-2688
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: Type: Feature Request
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:

Description Roger Hui 2010-12-15 21:29:12 UTC 
Help Desk Ticket Reference: https://c.na7.visual.force.com/apex/Case_View?id=500A0000004UFLs&sfdc.override=1
project_key: SOA

There is a security requirement to encrypt all passwords in EAP. However, passwords in jbossesb-properties.xml is not.
Comment 2 Kevin Conner 2010-12-16 05:14:03 UTC 
It should already be possible to encrypt the passwords in jbossesb-properties.xml, can you give us an example of where you think this fails?
Comment 3 Roger Hui 2010-12-16 17:04:13 UTC 
Three passwords in jboss-esb.properties that are not encyptable today:

<property name="org.jboss.soa.esb.registry.password" 
<property name="org.jboss.soa.esb.mail.smtp.password" value=""/>
<property name="org.jboss.soa.esb.persistence.db.pwd"
Comment 4 Kevin Conner 2010-12-16 17:42:20 UTC 
The only one of these three which cannot be encrypted is the SMTP one.