General J2EE: Best practice to JDBC Password
Hello, im did a stand-alone client and pluged on it JAAS. But now a doubt. Since i need to connect to JDBC to authenticate the user where to I store de user name and passord to the db? Or will not be better to authenticate the user through a bean? if yes, how to deal with the password transport over the connection? Anyone know how to acomplish it better? thanks Ruben
- Posted by: Ruben Trancoso
- Posted on: July 08 2007 20:19 EDT
store the password in an "Encrypted" format. i used Crytpo API from Java, and a salt on my last project. worked for me..it was also a requirement.