Enable encryption for WSO2 travelocity properties

According to the current implementation identity-agent-sso library accept plain text properties only. So there is no way to encrypt the sensitive properties when you use identity-agent-sso. Now we have introduced a mechanism to encrypt and decrypt your sensitive properties when using identity-agent-sso.

I am going to explain how to use encryption mechanism for your sample web application which uses identity-agent-sso. Here I am going to take the travelocity application as my web application. You can get the travelocity application by building sso-agent-sample in out product-is repository[1].

Let’s say you want to use encryption for wso2keystore password, wso2privatekey password which are in your travelocity.properties file [2].

1. First you have to build [3]. Then you will get an executable jar called org.wso2.encryptor-5.1.11-SNAPSHOT-jar-with-dependencies.jar. You can use this jar for encrypt sensitive property values. Since this is an executable jar you can use this jar as follows:-

{code}
java -jar org.wso2.encryptor-5.1.11-SNAPSHOT-jar-with-dependencies.jar <give the password you want to encrypt eg: wso2carbon>
{code}

3. You have to build[4] and get the jar org.wso2.carbon.identity.sso.agent-<version>.jar. This jar contains the modifications related to password decryption. If you are going to use travelocity application. You don’t need to do any further thing but if you are going to use your own web application you need to put this idenity-sso-agent jar in your application

Decryption

4. For providing the decryption key you have two options.

2) Starting tomcat with the ‘password’ command line argument. i.e: {{*./catalina.sh run password*}}. Once tomcat is started with the ‘password’ argument, you will be prompted to enter the secret key to decrypt the property values in *sso.properties*.

Now identity-agent-sso can decrypt your encrypted values.

Related posts:

Have you heard of the Taoist concept of Wu Wei? It is the art of non-action or simply not forcing. The idea is to embrace flow instead of effort to achieve a result. To western ears, this might…

In its 10th anniversary, this was my first time attending UX Australia. It was Thursday morning, 800+ attendees in the main plenary of the Grand Hyatt, Melbourne and we were ready to be enlightened…

Writing a business plan is an important part of your entrepreneurial journey. In our experience, it’s also one of the most challenging things for a new business owner to do. It takes a lot of time…