Sensitive config values
9.4.4. Sensitive configuration values (config secrets)

  • Sensitive configuration values, such as passwords, shared secrets and alike, can be stored in three different ways:
  • Secure External Storage: stored in external protected key store and not in the XML (recommended). For details, see 9.3. Storing sensitive configuration values externally
  • Obfuscated: stored "scrambled" in the XML (it can be recovered if known how, i.e. not securely encrypted)
  • Plain: stored in clear text in the XML