在工程中加入
maven
<dependency>
<groupId>com.github.ulisesbocchio</groupId>
<artifactId>jasypt-spring-boot-starter</artifactId>
<version>3.0.3</version>
</dependency>
gradle
implementation "com.github.ulisesbocchio:jasypt-spring-boot-starter:3.0.2"
在application-local.yml中加入
jasypt:
encryptor:
algorithm: PBEWithMD5AndDES
iv-generator-classname: org.jasypt.iv.NoIvGenerator
password: XyO8tet6i4dX14S #生产中使用命令行方式
修改密码为ENC()形式
Jasypt生成密码参考:https://github.com/chenjiangtao/spring-boot-on-kubernetes#Jasypt
mysql:
jdbc-url: jdbc:mysql://localhost:4000/test?serverTimezone=Asia/Shanghai&allowLoadLocalInfile=true&useUnicode=true&characterEncoding=utf-8&useSSL=false&rewriteBatchedStatements=true
# username: test
# password: test
username: ENC(cMiMOtvRCdJK+4hazUKSXA==)
password: ENC(rQc8TdaC+7m5DqLS1rlN1g==)
driver-class-name: com.mysql.cj.jdbc.Driver
validation-query: select 1
在启动类加两个注解
@Configuration
@EnableEncryptableProperties
public class MyApplication {
public static void main(String[] args) {
SpringApplication.run(MyApplication.class, args);
}
}
启动
java -jar -Djasypt.encryptor.password=XyO8tet6i4dX14S -DGATEWAY_SERVICE_EVN=local build/libs/app.jar
或者使用--spring.profiles.active=dev
java -jar -Djasypt.encryptor.password=XyO8tet6i4dX14S build/libs/app.jar --spring.profiles.active=local
更新盐
mvn jasypt:reencrypt -Djasypt.plugin.old.password=OLD -Djasypt.encryptor.password=NEW
ulisesbocchio参考:
https://github.com/ulisesbocchio/jasypt-spring-boot
版权声明:本文内容由互联网用户自发贡献,该文观点仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请联系我们举报,一经查实,本站将立刻删除。
发布者:全栈程序员-站长,转载请注明出处:https://javaforall.net/100338.html原文链接:https://javaforall.net
