Login
    Contents x
    Sitedef Password Encryption
    • 10 Jul 2023
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Contents

    Sitedef Password Encryption

    • Updated on 10 Jul 2023
    • 1 Minute to read
    • Contributors
    • Print
    • Dark
      Light
    Article summary

    Sitedef Password Encryption

    Passwords are traditionally not encrypted in the Sitedef, which can be a security risk. In order to solve this, there is a encryption option which is described in this document. This functionality is available from 2.22.6 (#5943)

    Set up password encryption

    The actions for password encryption are:

    1) Create a master password for your sites, like for your company or for the customer. Keep it super-safe, like storing it in a password manager.

    2) Encrypt the master password

    3) Put the encrypted master password in a text file which you point at from the sitedef

    4) Encrypt all sensitive properties of your sitedef, save and deploy the sitedef 


    1. Create a master password

    1. Use a password manager to suggest a unsolvable master password or do it manually by mixing upper and lower case characters and numbers, at least 14 long.

    2. Encrypt the master password

    1. Find out the location of the com.corzia.cipher.jar in the run time environment (your customer’s or any of your own) – it should be in …/webapps/comflow/WEB-INF/lib

    2. Run this command in shell (on Windows, run it as Administrator!) (you don’t need to ”stand” in any particular folder): java -jar your/tomcat/path/webapps/comflow/WEB-INF/lib/com.corzia.cipher-1.0.4.jar –m

    3. The command gives you back an encrypted master password encrypted, like {Rv9pTdNt+wsHHLgyqNhR1BkCXs3qXqvTVUaP1Ca8WrIIyUsK3ySi2RlWjj5bigAF} 

    3. Put the encryped master password in a file

    1. Create a new text file, name it MasterPassword.txt and then paste the encrypted master password into it, including the curly brackets

    2. Put the file under D:\Corzia or other suitable location on the server where your Tomcat with encrypted sitedef is going to run

    3. In the sitedef.xml, tell Comflow where the file is by setting the file location as a property under ServerInfo-Properties:

    <Property name="master.password.file.location" value=”D:\Corzia\MasterPassword.txt"/>


    4. Encrypt all sensitive properties in your

    1. To encrypt, run this command:
     java -jar /path/to/tomcat/webapps/comflow/WEB-INF/lib/com.corzia.cipher-1.0.4.jar -e -f /path/to/MasterPassword.txt

    2. Update the sitedef

     <parameter name="user" value="comflow"/>
<parameter name="password" value=”{7sAUQE17cJEHdlLf2h89HmyKBLL2I7vHd/bpKwBWhAk=}"/>

    3. Repeat for all encryption-worthy properties

     

    Was this article helpful?
    What's Next
    Change password!
    Changing your password will log you out immediately. Use the new password to log back in.
    Change profile
    Success!
    First name must have atleast 2 characters. Numbers and special characters are not allowed.
    Last name must have atleast 1 characters. Numbers and special characters are not allowed.
    Enter a valid email
    Enter a valid password
    Your profile has been successfully updated.
    Logout