Forums
Home Product Q&A Discussion groups Articles Ask a question Search
Learning
Events
Champions

Forums

Articles
Create
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Product Q&A
See all
Community resources
Top groups
Explore all groups
Community resources
Learn
Community resources
Events
Community resources

Tool to encrypt DB username & Password in dbconfig.xml in <jira-home>

Venkateswara Kumar
Venkateswara Kumar December 12, 2018

Hi,

My purpose is encrypt the database password as Jira uses raw Password in dbconfig.xml /JiraDS.properties  we tried to achieve the same by following the below steps.

1. we configured our factory class in server.xml file , to decrypt the encrypted password to the datasource and try to use the JNDI resource name in dbconfig.xml. However we observed that the factory class is ignored.

We always see that username and password are getting picked up from JiraDS.properties, in case of h2db ,where as in oracle database we are unable to use JNDI resource name itself in dbconfig.xml.

2. We changed the password of default user "SA" to some other password ,post which we are unable to connect to "h2" database through "h2 GUI".
However Jira is able to successfully make a connection to h2 database during server start up with empty password in JiraDS.properties.

In short what we have observed is JiraDS.properties is taking precedence over JNDI Data source in any case,

Kindly suggest how we can use our own JNDI datasource instead of using raw password. 

Regards,

Venkatesh. 

Answer
Watch
Like Be the first to like this
1028 views

1 answer

0 votes
Stephen Sifers
Stephen Sifers
Atlassian Team
Atlassian Team members are employees working across the company in a wide variety of roles.
January 2, 2019

Hello Venkatesh,

Your idea to encrypt the credentials stored within the dbconfig.xml is a really great idea. Good news, your not the only one wanting this implemented into the Atlassian products. There is a feature request for this idea. You may find the feature request at JRASERVER-31004. We would suggest you vote and watch this request to receive updates on its status.

While you may look into using your own JNDI datasource for encrypting raw passwords, this method will not be supported and may cause issues as you upgrade the product through multiple versions.

Something to be aware of is this is a support community and not often browsed by developers. We want to ensure you get the responses and answers you need so we would suggest you check out the Developer Community. The Developer Community may have more available resources to answer or address your developer questions.

Regards,

Stephen Sifers

View More Comments
S_ Toyo
S_ Toyo
Contributor
August 14, 2019

@Stephen SifersAdvanced encryption isn't working for Jira Software :(

Like Scott A_ Chase likes this
Reply

Suggest an answer

Log in or Sign up to answer
Jira
Jira
TAGS
AUG Leaders

Atlassian Community Events

    See all events
    Community
    Forums
    FAQs Forums guidelines
    Learning
    About learning Resources
    Events
    Champions
    Copyright © 2025 Atlassian
    Privacy Policy Terms Security
    Welcome illustration

    Welcome to the new Atlassian Community

    Online forums and learning are now in one easy-to-use experience.

    By continuing, you accept the updated Community Terms of Use and acknowledge the Privacy Policy. Your public name, photo, and achievements may be publicly visible and available in search engines.