Based on discussion with support BSP-8304. Our company's security team would like to officially request that the key used for obfuscation in bamboo; EncryptionService is externalised to it's own file.
This would ensure that the passwords in our database could not be deciphered by anyone with the source code.
- derived from
-
![[Atlassian Support System]](/images/icons/generic_link_16.png "[Atlassian Support System]")
BSP-8304
You do not have permission to view this issue
[BAM-12306] Externalize 3DES key used for obfuscation to a file
| Workflow | Original: JAC Suggestion Workflow [ 3015355 ] | New: JAC Suggestion Workflow 3 [ 3601643 ] |
| Status | Original: RESOLVED [ 5 ] | New: Closed [ 6 ] |
| Workflow | Original: Confluence Workflow - Public Facing v4 [ 2701786 ] | New: JAC Suggestion Workflow [ 3015355 ] |
| Issue Type | Original: Improvement [ 4 ] | New: Suggestion [ 10000 ] |
| Workflow | Original: Bamboo Workflow 2016 v1 [ 1416600 ] | New: Confluence Workflow - Public Facing v4 [ 2701786 ] |
| Fix Version/s | New: 5.15.0 [ 64338 ] | |
| Resolution | Original: Fixed [ 1 ] | New: Done [ 17 ] |
| Status | Original: In Progress [ 3 ] | New: Resolved [ 5 ] |
| Status | Original: Open [ 1 ] | New: In Progress [ 3 ] |
| Assignee | New: Przemek Bruski [ pbruski ] |
| Workflow | Original: Bamboo Workflow 2014 v2 [ 609189 ] | New: Bamboo Workflow 2016 v1 [ 1416600 ] |
| Workflow | Original: Bamboo Workflow 2014 [ 600467 ] | New: Bamboo Workflow 2014 v2 [ 609189 ] |
| Workflow | Original: Bamboo Workflow 2010 [ 442589 ] | New: Bamboo Workflow 2014 [ 600467 ] |