Tomcat + DBCP + encrypted connection parameters

[chenn]

Hi folks,

running tomcat with DBCP works fine so far, but i'd like to prevent admin-users or whoever to read out connection-parameters from my server.xml file.
a neat solution might be storing the encrypted db passwords somewhere and initialising the dbcp-pooling manually - does anyone have a clue on how to get this done?
i found vague hints about BasisDataSource.addCinnectionProperty but simply don't get the clue...

any advice appreciated!

thanks in advance.,

chenn


regards
chenn

 

[sedj]

A basic example I think here :

http://cvs.apache.org/viewcvs.cgi/jakarta-commons/dbcp/doc/BasicDataSourceExample.java?view=markup

Other examples here :

http://cvs.apache.org/viewcvs/jakarta-commons/dbcp/doc/

--------------------------------------------------
Free Java/J2EE Database Connection Pooling Software

http://www.primrose.org.uk

 

[chenn]

Thanks sedj,
but I was aware of these sources.
I'd like to have Tomcat manage the datasource but however initialize them when my app needs them. that means get the connection info from encrypted property files instead of putting plain text connection info in server.xml.
as far as i can see, the tomcat's JNDI context is read-only, so i'd have to write my own datasources?!

regards
chenn

 

[sedj]

Your choices ASFAIK are either write your own datasource, or get rid of DBCP and use another pooling system which does support password encryption.

--------------------------------------------------
Free Java/J2EE Database Connection Pooling Software

http://www.primrose.org.uk