I'm trying to hide the JDBC plain text passwords found in the jboss.jcml. Does a mechanism already exist to do this?
I am considered writing a MBEAN wrapper around org.jboss.jdbc.XADataSourceLoader which will accept an encrpyt password, decrpyt it, and then initialize the normal XADataSourceLoader. Does this make sense or is there a better way?
[Note: I already have a separate app that places entries into the jcml so obtaining encrypt passwords shouldn't be a problem.]
Have you proceeded with this ?
We are looking at the same issue and had got to the same approach. My research indicates that there might be better ways to do this win JBoss 3.x, but not with 2.x.
How did you go - anything we should be wary of ?
Thanks
Matt