Skip to main content


Eclipse Community Forums
Forum Search:

Search      Help    Register    Login    Home
Home » Eclipse Projects » Virgo » Virgo Management Console Password Encryption
Virgo Management Console Password Encryption [message #1801853] Mon, 28 January 2019 13:32 Go to next message
Joel Traber is currently offline Joel TraberFriend
Messages: 11
Registered: October 2015
Junior Member
Hi guys,

The password to login into the Virgo Management Console is provided plain text in the property file: SERVER_HOME/configuration/org.eclipse.virgo.kernel.users.properties

Is there a way to provide that in an encrypted form to Virgo?
(One of our customers follows strictly the security policy to not have plain text pw in the property files.)

I appreciate if someone can give us a hint how we can address that requirement.

Thanks, Joël
Re: Virgo Management Console Password Encryption [message #1801854 is a reply to message #1801853] Mon, 28 January 2019 13:38 Go to previous messageGo to next message
GianMaria Romanato is currently offline GianMaria RomanatoFriend
Messages: 54
Registered: November 2015
Member
Hi Joel,

Virgo uses JAAS (Java Authentication and Authorization Service) Login modules [1] for authentication.
The login modules are declared in file: $VIRGO_HOME/configuration/org.eclipse.virgo.kernel.authentication.config

You can make the password protected by providing your own implementation of a LoginModule and declaring it in the config file in place of the default one. You can look into the Virgo login module for a reference [2]

[1] https://docs.oracle.com/javase/7/docs/api/javax/security/auth/spi/LoginModule.html
[2] https://github.com/eclipse/virgo.nano/blob/master/org.eclipse.virgo.nano.authentication/src/main/java/org/eclipse/virgo/nano/authentication/KernelLoginModule.java
Re: Virgo Management Console Password Encryption [message #1801862 is a reply to message #1801854] Mon, 28 January 2019 15:22 Go to previous message
GianMaria Romanato is currently offline GianMaria RomanatoFriend
Messages: 54
Registered: November 2015
Member
I forgot to mention, that due to OSGi classloading, Virgo uses the Web App class loader to load the login module class declared in the file.

If you are making a login module for your own Web application you must place the login module class in a bundle and import the corresponding package in the Web Application Bundle that uses that login module.

If instead you want to change the login module of the Virgo admin console, you have most likely to make the bundle that contains the login module a fragment of the Gemini Web bundle (or some other catalina bundle).
Previous Topic:Problem deploying web bundle with latest Eclipse and Virgo 3.7.2
Next Topic:Virgo support for java 9
Goto Forum:
  


Current Time: Wed Nov 13 08:10:11 GMT 2019

Powered by FUDForum. Page generated in 0.01680 seconds
.:: Contact :: Home ::.

Powered by: FUDforum 3.0.2.
Copyright ©2001-2010 FUDforum Bulletin Board Software

Back to the top