We have a client asking us to encrypt the clear text users/passwords in c3p0-config.xml.
We’re trying to use jasypt, but can’t find a convenient place to plug jasypt into the c3p0 configuration file processing.
It looks like adding Spring or Hibernate would help with Jasypt+c3p0, but that’s not an option for us.
The method C3P0ConfigXmlUtils.extractConfigFromXmlDoc() looks like a nice place to intercept the configuration process.
But this method (and a number of others) are static and can’t be overridden.