Home/ Questions/Q 8293485
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-08T13:50:38+00:00

I don’t want to put unencrypted passwords in the application config file. This question:

  • 0

I don’t want to put unencrypted passwords in the application config file.

This question: Encrypting db password in application.conf has a great solution for the problem but it works only for Play 1.

Does anybody know a solution that works for Play 2.0? I am using anorm in Scala version of Play 2.0.2.

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    Thanks to discussion with Raffaele and following my own investigation of the code, it seems that Play 2.0 does not allow you to encrypt DB passwords.

    If I missed something please let me know.

    EDIT: One can work around the problem by using custom database driver in the following manner:

    // Just redirect everything to the delegate
class DelegatingDriver(delegate: Driver) extends Driver
{
  def connect(url: String, info: Properties) = delegate.connect(url, info)
  def acceptsURL(url: String) = delegate.acceptsURL(url)
  def getPropertyInfo(url: String, info: Properties) = delegate.getPropertyInfo(url, info)
  def getMajorVersion = delegate.getMajorVersion
  def getMinorVersion = delegate.getMinorVersion
  def jdbcCompliant() = delegate.jdbcCompliant()
}

// Replace password in properties with the decrypted one
class MyDecryptingDriver extends DelegatingDriver(Class.forName("<my.original.Driver>").newInstance().asInstanceOf[Driver])
{
  override def connect(url: String, info: Properties)= {
    // copy Properties
    val overriddenProperties= clone(info)   
    // override password property with the decrypted value
    Option(info.getProperty("password")).foreach(value => overriddenProperties.setProperty("password", decryptPassword(value)))
    super.connect(url, overriddenProperties)
  }

  def clone(orig: Properties)= {
    val result= new Properties()
    orig.propertyNames().map(_.asInstanceOf[String]).foreach(pName => result.setProperty(pName, orig.getProperty(pName)))
    result
  }

  def decryptPassword(encrypted: String)= ...
}

    then you replace application.conf/db..driver by my.com.MyDecrypting driver. Not perfect but works for me…

    • 0