Not sure about the ALIAS= syntax. What about the good old EL ? I agree
with Jevgeni, we've already talked about configuration issues in EE. It has
to go further not just restricted to passwords. What about :
@DataSourceDefinition(name="*${myDataSource}*",
className="com.mysql.jdbc.jdbc2.optional.MysqlDataSource",
user="*${myUserId}*",
password="*${password}*",
databaseName="*${dbName}*",
serverName="localhost",
portNumber=3306 )
Sorry if I didn't understand well but passwords are just one of the many
possible configuration on an EE app. The fact that it's encrypted makes it
slightly different but we could treat it in a different way. Something like
password="*${aClearPassword}*" and password="*
${encrypted(anEncryptedPassword}*".
Antonio
On Tue, Jan 31, 2012 at 09:45, Jevgeni Kabanov
<jevgeni_at_zeroturnaround.com>wrote:
> Is there a reason it is limited to passwords? I'm sure a generic ${}
> Ant-style configuration string post-processing would be greatly
> appreciated by the community.
>
> Sent from my iPhone
>
> On 31.01.2012, at 0:49, Bill Shannon <bill.shannon_at_oracle.com> wrote:
>
> > I've uploaded a proposal from our security team for password aliasing
> > support in Java EE 7. Let me know if you have any comments.
> >
> >
> http://java.net/projects/javaee-spec/downloads/download/password-aliasing-ee7-proposal.pdf
>
--
Antonio Goncalves
Software architect and Java Champion
Web site <http://www.antoniogoncalves.org> |
Twitter<http://twitter.com/agoncal>|
Blog <http://feeds.feedburner.com/AntonioGoncalves> |
LinkedIn<http://www.linkedin.com/in/agoncal>| Paris
JUG <http://www.parisjug.org>