打开kettle的资源库配置文件respositories.xml,可以看到数据库的连接密码是加密的。
例如
<username/>
<password>Encrypted sasdfere13rrrf</password>
加解密由org.pentaho.di.core.encryption.Encr负责,算法非常简单:
public static final String encryptPassword(String password)
{
if (password==null) return "";
if (password.length()==0) return "";
BigInteger bi_passwd = new BigInteger(password.getBytes());
BigInteger bi_r0 = new BigInteger(SEED);
BigInteger bi_r1 = bi_r0.xor(bi_passwd);
return bi_r1.toString(RADIX);
}
public static final String decryptPassword(String encrypted)
{
if (encrypted==null) return "";
if (encrypted.length()==0) return "";
BigInteger bi_confuse = new BigInteger(SEED);
try
{
BigInteger bi_r1 = new BigInteger(encrypted, RADIX);
BigInteger bi_r0 = bi_r1.xor(bi_confuse);
return new String(bi_r0.toByteArray());
}
catch(Exception e)
{
return "";
}
}
数据库密码如果需要加密,保存后来会以特定字符开头
public static final String PASSWORD_ENCRYPTED_PREFIX = "Encrypted ";
加密方法,被加一个方法调用
public static final String encryptPasswordIfNotUsingVariables(String password)
{
String encrPassword = "";
List<String> varList = new ArrayList<String>();
StringUtil.getUsedVariables(password, varList, true);
if (varList.isEmpty())
{
encrPassword = PASSWORD_ENCRYPTED_PREFIX+Encr.encryptPassword(password);
}
else
{
encrPassword = password;
}
return encrPassword;
}
是否加密,由StringUtil的方法决定
public static void getUsedVariables(String aString, List<String> list, boolean includeSystemVariables)
{
getUsedVariables(aString, UNIX_OPEN, UNIX_CLOSE, list, includeSystemVariables);
getUsedVariables(aString, WINDOWS_OPEN, WINDOWS_CLOSE, list, includeSystemVariables);
}
如果密码是使用变量的方法,就不会加密,即%%变量%%和${变量}的方式填写,就不会加密。如果将变量调到Java的系统属性中,打开资源库时,就可以使用。
原文地址:http://cleaneyes.javaeye.com/category/117059?show_full=true