Uploaded image for project: 'Bitbucket Server'
  1. Bitbucket Server
  2. BSERV-10043

Encrypt Database Password in bitbucket.properties or use integrated authentication

    XMLWordPrintable

Details

    • 1,082
    • We collect Bitbucket feedback from various sources, and we evaluate what we've collected when planning our product roadmap. To understand how this piece of feedback will be reviewed, see our Implementation of New Features Policy.

    Description

      Atlassian status as of Nov 2020

      Hi,

      I'm excited to share that in Bitbucket Server and Data Center 7.8 we added an extra layer of security. You can now encrypt the database password that is stored in bitbucket.properties file with one of the encryption methods provided.

      You can find more information in the Bitbucket Server and Data Center 7.8 release notes and Encrypting database passwords docs.

      Anton Genkin
      Product Manager Bitbucket Data Center

      Original message

      Bitbucket should encrypt the database password since it's in plain text in the bitbucket.properties file or it could use the integrated authentication with the databases such as MSSQL database.

      This is really the same underlying issue as JIRASERVER-31004, but applies to Bitbucket (as it should to all database passwords stored at rest for other Atlassian applications).  

      Current state:

      jdbc.password=plaintext

      Desired state:

      jdbc.password=WG%^'mP/@6*S\'6GX2m}B:4+b~\qh/VJ?a=S'fJke[t/XhMCp&

      Attachments

        Issue Links

          Activity

            People

              csubraveti Chandravadan
              8d15eea005a5 daniel.tonkin
              Votes:
              53 Vote for this issue
              Watchers:
              54 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: