A friendly place for programming greenhorns!
Big Moose Saloon
Register / Login
Win a copy of
video training course this week in the
Object Relational Mapping
How to secure the database credentials
Joined: Jul 04, 2007
Feb 12, 2010 00:16:01
I do not want to put my database credentials information in properties and hibernate.cfg.xml file.
Can anyone suggest me that it is possible in hibernate to secure that credentials and if yes then how it can be achieved.
Joined: Apr 14, 2004
Feb 12, 2010 02:11:55
Why not? Credentials have to go somewhere (not Hibernate's rules - just one of the the basic requirements for connecting to a database).
You could write your application to prompt for these, that way the would not be stored. Or you could swap to a database that support single sign on (DB2 or SQL Server for example).
Joined: Sep 29, 2008
Feb 12, 2010 06:13:14
Or use JNDI, and store them in another different place on the server.
But the basic point is sound--why do you care?
It is sorta covered in the
JavaRanch Style Guide
subject: How to secure the database credentials
Apache2 as reverse proxy with Tomcat6 and LDAP
Login page security using Servlet
Database connectivity in workshop 8.1!
how to get the database name and credentials from config.xml of application server.
Connecting to a vpn network
All times are in JavaRanch time: GMT-6 in summer, GMT-7 in winter
| Powered by
Copyright © 1998-2015