Encrypted OSGI configuration properties

Question

It appears this is available starting in 6.3. From the 6.3 release notes: "Support for all OSGI configuration properties to be stored in a protected encrypted form instead of clear text." How do you enable this or is it done automatically?

What I am really looking for is the LDAP Identity Provider bind password to be masked when I view through the CRX. In 6.3, I am still seeing it in clear text. Perhaps that's not what this feature is intended to do.

smacdonald2008 · Accepted Answer

See this AEM doc -- Encryption Support for Configuration Properties

25793466 · Answer

That is indeed what I was looking for. It works in 6.3 also, even though the documentation seems to be for 6.4. When you view the configuration through the CRX, the value will show the encrypted text. Then AEM magically decrypts it before it is sent to the service or external component. I guess every time a configuration is invoked, AEM reviews all the properties looking for a pattern so it knows to decrypt it.

Sign up

Login with SSO

Login to the community

Login with SSO

Scanning file for viruses.

This file cannot be downloaded