Spring : Encrypt Spring Datasource Password Credentials

-
Encrypt Spring Datasource Password Credentials

 (1) EncryptedDataSource.java I have written a wrapper class EncryptedDataSource for org.springframework.jdbc.datasource.DriverManagerDataSource and overridden getPassword() method. EncryptedDataSource class is injected in spring datasource configuration xml file. Which calls the overriden getPassword() method of data-source at the time of database connection. getPassword() method decode the encrypted password into actual password. To decrypt or encrypt password we used "BASE64Decoder" algorithm. 

import java.io.IOException; 
import org.springframework.jdbc.datasource.DriverManagerDataSource; 
import sun.misc.BASE64Decoder; 
import sun.misc.BASE64Encoder; 
public class EncryptedDataSource extends DriverManagerDataSource{         
        @Override 
        public String getPassword() { 
                String password = super.getPassword(); 
                return decode(password); 
        } 
        /*** 
         * Decode Password 
         */ 
        private String decode(String decode) { 
                BASE64Decoder decoder = new BASE64Decoder(); 
                try { 
                        decode = new String(decoder.decodeBuffer(decode)); 
                        System.out.println("Password Decrypted successfully"); 
                } catch (IOException e) { 
                        e.printStackTrace(); 
                } 
                return decode; 
        } 
        /** 
         * @param args 
         */ 
        public static void main(String[] args) { 
                String password="atlas"; 
                // TODO Auto-generated method stub 
                System.out.println("Password:"+password); 
                BASE64Encoder encoder = new BASE64Encoder(); 
                String encryptedPassword=encoder.encode(password.getBytes()); 
                System.out.println("encryptedPassword:"+encryptedPassword); 
        } 
} 

(2) spring-configuration.xml Bean datasource is define with custom EncryptedDataSource class , rather than DriverManagerDataSource class. Here I have passed the encrypted password to the spring data-source. 
Change datasource as shown below 
<!--<bean id="datasource" class="org.apache.commons.dbcp.BasicDataSource"> 
       <property name="driverClassName" value="oracle.jdbc.driver.OracleDriver"/> 
       <property name="url" value="jdbc:oracle:thin:@hostname:port:schemaname"/> 
       <property name="username" value="${dbusername}"/> 
       <property name="password" value="${dbpassword}"/> 
     </bean> 
--> 

<bean id="datasource" class="EncryptedDataSource"> 
       <property name="driverClassName" value="oracle.jdbc.driver.OracleDriver"/> 
       <property name="url" value="jdbc:oracle:thin:@hostname:port:schemaname"/> 
       <property name="username" value="${dbusername}"/> 
       <property name="password" value="${dbpasswordencrypted}"/> 
</bean> 
Please leave your comments and suggestions below...
Reactions: 

Comments

Post a Comment

Popular posts from this blog

Ramoji Film City, Hyderabad, India

-
Image
Ramoji Film City Website : https://www.ramojifilmcity.com / Timing : 9:30 to 8pm all days Transport to/from Ramji film city:   You can book bus transport by Ramoji film city website, the fare is 350 Rs per person. There are buses on 3 routes. You can also go by Auto/Cab from Uber. There are many UBER cabs available for your return travel also. Ramoji Film City runs a service for guest who does not have booked transportation for return. Ramji film city  Tickets :    Basic package Adult ticket is 1150 Rs and kids 950 Rs, plus GST. Tip1: You have the option of selecting from two packages. If you are with elderly members or are going during summer days, try to get the star experience. Tip2: We booked our tickets via Paytm and got 75 Rs cashback. You can book it after reaching there also. Parking at Ramoji:   There is plenty of paid parking available. Clock room  at Ramoji :   At the entrance, they have a big clock room where you can put your luggage for nomina
Read more

Ashtavinayak Temples | 8 Ganpati Temples of Maharashtra | Details Travel Reviews

-
Image
Ashtavinayak Temples | 8 Ganpati Temples of Maharashtra Moreshwar Temple, Morgaon Shri Mayureshwar Mandir is located in Morgaon, about 80 kilometers from Pune city. The temple is the starting and ending point of a pilgrimage of eight revered Ganesha temples called Ashtavinayaka. Siddhivinayak Temple, Siddhatek Siddhivinayak Temple of Siddhatek is one of the Ashtavinayaka and the only Ashtavinayaka shrine in Ahmednagar district. The temple is located on the northern bank of the river Bhima on a hillock, surrounded by thick foliage of Babul trees. Ballaleshwar Temple, Pali Ballaleshwar temple is one of the eight temples of Lord Ganesha and the only incarnation of Ganesha that is known by his devotee’s name. Ballaleshwar Pali temple is situated between fort Sarasgad and the river Amba, at a distance of 30 km from Karjat in the Raigad district. Varadavinayak Temple, Mahad Varadvinayak Temple is located in Mahad village situated in Khalapur taluka near Karjat. The idol of t
Read more

Quick Refresh : Hibernate

-
Image
What is ORM? ORM stands for Object-Relational Mapping (ORM) is a programming technique for converting data between relational databases and object-oriented programming languages. Why do you need ORM tools like hibernate? The main advantage of ORM like hibernate is that it shields developers from messy SQL. Apart from this, ORM provides the following benefits: Improved productivity High-level object-oriented API Less Java code to write No SQL to write Improved performance Sophisticated caching Lazy loading Eager loading Improved maintainability A lot less code to write Improved portability ORM framework generates database-specific SQL for you Hibernate  is an Object-Relational Mapping(ORM) solution for JAVA. It is a powerful, high performance Object-Relational Persistence and Query service for any Java Application.Hibernate maps Java classes to database tables and from Java data types to SQL data types and relieve the developer from 95% of common d
Read more