springboot yml数据库密码加密的两种方式
加密
- 一、jasypt
- 二、druid
一、jasypt
1、引入依赖
<dependency> <groupId>com.github.ulisesbocchio</groupId> <artifactId>jasypt-spring-boot-starter</artifactId> <version>3.0.3</version></dependency>
2、yml新增密钥
#jasypt加密的密匙jasypt: encryptor: #你自己的密钥 password: HSHUYUY@165R!D5561
3、使用encryptor生成加密数据
@AutowiredStringEncryptor encryptor;@Testpublic void encryptor(){String username = encryptor.encrypt("root");System.out.println(username);String password = encryptor.encrypt("root");System.out.println(password);}
4、将生成的加密密码写道yml,注意要用ENC()
包住
5、此时测试可以正常启用,密钥不能暴露,将yml的密钥删了,把密钥当作启动参数
jar包启动的:
java -jar -Djasypt.encryptor.password=HSHUYUY@165R!D5561 XXX-xxxx.jar
二、druid
1、druid依赖
<!-- 连接池 --> <dependency> <groupId>com.alibaba</groupId> <artifactId>druid-spring-boot-starter</artifactId> <version>1.1.10</version> </dependency>
2、获取密码,publickey
输出结果
或者在maven仓库找到自己导的jar包目录,在cmd输入:
java -cp druid-1.1.10.jar com.alibaba.druid.filter.config.ConfigTools root(你的密码)执行结果:privateKey:MIIBVQIBADANBgkqhkiG9w0BAQEFAASCAT8wggE7AgEAAkEAoHbP26qwf/yK3ylc0gDT4V3fVDtttamHuVoAuEGQqX27gnKpQ/oQm6q0yKd1M3TVAftFwiibUQYOYgXemlGUmQIDAQABAkAa6dKTFV3lGYZxR4656kmfUw9SIWWVQonxHJdiUBzjUF9DJG87Y9A0LH2vINg5ElzyqbHO8oYjBqmx/qeq0EABAiEA1EVnjxY3sF1oYq3Yyf+SiJIcNBg7jeNSn46YZP/UnBkCIQDBhT+WpI8OE9sOwobzoq68HD8ax0NiofG9QArf24PMgQIgd1HYJ4deoGWxMp70WH+v99LhxarFdzmMDSKTqVphQakCIQCU5OjgBwzqT+yjlpgurGS05ybGe7olEWTlr3iudD8cAQIhAKUiw4GkHtb52wPFodIJ0CqsDZx8ArIhkr7HlCkH4laJpublicKey:MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAKB2z9uqsH/8it8pXNIA0+Fd31Q7bbWph7laALhBkKl9u4JyqUP6EJuqtMindTN01QH7RcIom1EGDmIF3ppRlJkCAwEAAQ==password:ii07X7Je3wdc6EP6c8NfrTqZ3fEi/JIxCFSjCwj1I4VzwJ2KYJNf5lDcbxUhIghklBtigy6JbEq9aU2WxN5Spw==
3、修改配置,将publicKey和密码填写到yml对应位置
4、此时测试已成功访问