Versions Compared

Old Version 5

changes.mady.by.user Felix Janssen

Saved on

compared with

New Version 6

changes.mady.by.user Munish Mahabiersing

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Property Encryption (Blueriq 12.10 and newer)

For the new property encryption mechanism, a password is required. This password serves as the secret key that is used for encryption. We recommend that you use a strong password.

...

  • The application decrypts properties at startup. If decryption fails, the application will not start. Usual causes are that no password is configured or that the encryption password was not the password that the property was encrypted with.
  • Contrary to the old mechanism, any property can be encrypted.

Encrypting passwords with the Blueriq Encryptor

The BlueriqEncryptor is located in the Runtime\Java\Webapp\Tools folder in the release zip. This is a Java console application that can be used to create encrypted passwords to be used for password properties in the Runtime.

...

Please refer to Legacy property encryption [editor] for the old encryption mechanism.

Encryption algorithm

The encryption uses the following parameters:

  • Password Based Encryption with SHA-512 hashes and AES-256 encryption
  • Random salt when encryption the property
  • A random input vector when encrypting the property
  • 1000 hashing iterations

Customizing property encryption (Blueriq 12.10+)

The property encryption mechanism uses sensible defaults. If you want to customize the way your properties are encrypted/decrypted, you can add an org.jasypt.encryption.pbe.PBEStringEncryptor bean to your project. You can reference this bean by setting this property:

...