- 加密数据库密码
java -cp client/jboss-logging-spi.jar:common/lib/jbosssx.jar org.jboss.resource.security.SecureIdentityLoginModule ipay
Linux命令截图如下:
备注:ipay为要加密的数据库密码 668f3a39b1e1d673 - 加密后的密码创建用加密后的密码创建验证的police
在Jbosshome/server/default/conf/login-config.xml文件下面添加如下配置
<application-policy name="EncryptDBPassword">
<authentication>
<login-module code="org.jboss.resource.security.SecureIdentityLoginModule" flag="required">
<module-option name="username">ipay</module-option>
<module-option name="password">668f3a39b1e1d673
</module-option>
<module-option name="managedConnectionFactoryName">jboss.jca:name=ibs/db/ora1,service=LocalTxCM</module-option>
</login-module>
</authentication>
</application-policy>
备注:ibs/db/ora1为JNDI的数据源配置
- 修改jboss5/server/default/deploy/oracle-ds.xml配置
<datasources>
<local-tx-datasource>
<jndi-name>ibs/db/ora1</jndi-name>
<use-java-context>false</use-java-context>
<connection-url>jdbc:oracle:thin:@ip:port:数据源</connection-url>
<driver-class>oracle.jdbc.driver.OracleDriver</driver-class>
<security-domain>EncryptDBPassword</security-domain>
<exception-sorter-class-name>org.jboss.resource.adapter.jdbc.vendor.OracleExceptionSorter</exception-sorter-class-name>
<check-valid-connection-sql>select 1 from dual</check-valid-connection-sql>
<min-pool-size>20</min-pool-size>
<max-pool-size>100</max-pool-size>
<idle-timeout-minutes>10</idle-timeout-minutes>
<blocking-timeout-millis>90000</blocking-timeout-millis>
<metadata>
<type-mapping>Oracle11g</type-mapping>
</metadata>
</local-tx-datasource>
</datasources>
通过以上3步完成JBOSS的连接数据库的加密。