You can encrypt sensitive properties in the alfresco-global.properties configuration file using the following configurations:
Property | Default Value | Description |
---|---|---|
props.encryption.keySize | 512 | The key size. |
props.encryption.encryptionAlgorithm | RSA/ECB/PKCS1Padding | The encryption algorithm. |
props.encryption.legacyMode | false | Allows to generate the encrypted value in the old format (<=6.2). |
Supported enryption algorithms and key sizes:
Algorithm | Key Sizes |
---|---|
RSA/ECB/PKCS1Padding | 512, 1024, 2048 |
RSA/ECB/OAEPWithMD5AndMGF1Padding | 512, 1024, 2048 |
RSA/ECB/OAEPWithSHA-224AndMGF1Padding | 1024, 2048 |
RSA/ECB/OAEPWithSHA-256AndMGF1Padding | 1024, 2048 |
RSA/ECB/OAEPWithSHA-384AndMGF1Padding | 1024, 2048 |
RSA/ECB/OAEPWithSHA-512AndMGF1Padding | 2048 |
AES/CBC/PKCS5Padding | 128, 192, 256 |
AES/ECB/PKCS5Padding | 128, 192, 256 |
DESede/CBC/PKCS5Padding | 128 |
DESede/ECB/PKCS5Padding | 128 |
The generated key(s) need to be placed in: <ALFRESCO_HOME>/tomcat/shared/classes/alfresco/extension/enterprise.