We are using Jasypt to encrypt our web application properties values.
By default - without jasypt encryption- PropertySourcesPlaceholderConfigurer allow us to load properties from environmentProperties (servletContextInitParams ; servletConfigInitParams ; jndiProperties) and localProperties (properties files).
When using jasyp source place holder ("EncryptablePropertySourcesPlaceholderConfigurer") instead of the default one
only localProperties are decrypted :
in jasypt source code convertProperties is done on the "mergeProperties()" method
So if we are using encrypted JNDI properties as input they are not decrypted by jasypt.
We would like to encrypt our JNDI values in the same way.
I'm not sure that this is a bug request -maybe feature request) and in this case does exists a similar feature request ?
is this fix/feature planned in a futur version of jasypt ?
In advance thanks for you answer
Log in to post a comment.