We have a client asking us to encrypt the clear text users/passwords in c3p0-config.xml.

We’re trying to use jasypt, but can’t find a convenient place to plug jasypt into the c3p0 configuration file processing.

It looks like adding Spring or Hibernate would  help with Jasypt+c3p0, but that’s not an option for us.


The method C3P0ConfigXmlUtils.extractConfigFromXmlDoc() looks like a nice place to intercept the configuration process.

But this method (and a number of others) are static and can’t be overridden.





The information contained in this message is proprietary and/or confidential. If you are not the intended recipient, please: (i) delete the message and all copies; (ii) do not disclose, distribute or use the message in any manner; and (iii) notify the sender immediately. In addition, please be aware that any message addressed to our domain is subject to archiving and review by persons other than the intended recipient. Thank you.