Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

org.jasypt.exceptions.EncryptionOperationNotPossibleException

Tags:

spring

password-encryption

hibernate

jasypt

I am using Jasypt-1.9.0 with Spring 3.1 and Hibernate 4.0.1. I have a requirement in my application to connect to database whose password(root) is stored in the encrypted form in the property file within the application.

I looked online and found the way with following links:

  1. http://www.jasypt.org/spring31.html

  2. http://www.jasypt.org/hibernate.html

  3. http://www.jasypt.org/encrypting-configuration.html

I have done the following steps and configuration for my requirement:

  • Added jasypt-1.9.0 and jasypt-hibernate4-1.9.0 in build path.
  • Added following in my dispatcher-servlet file:
< bean id="propertyConfigurer"
   class="org.jasypt.spring31.properties.EncryptablePropertyPlaceholderConfigurer">

  < constructor-arg ref="configurationEncryptor" />
  < property name="locations">
    < list>
      < value>classpath:database.properties< /value>
    < /list>
  < /property>
< /bean>

< bean id="configurationEncryptor"
    class="org.jasypt.encryption.pbe.StandardPBEStringEncryptor">
  < property name="config" ref="environmentVariablesConfiguration" />
< /bean>

< bean id="environmentVariablesConfiguration"
    class="org.jasypt.encryption.pbe.config.EnvironmentStringPBEConfig">
  < property name="algorithm" value="PBEWithMD5AndDES" />
  < property name="passwordEnvName" value="APP_ENCRYPTION_PASSWORD" />
</bean>
  • Using CLI tool of Jasypt 1.9.0, I have generated the password below(attached snapshot of CLI)

enter image description here - Added a new Environment Varibale as APP_ENCRYPTION_PASSWORD with value as root

  • Added the encrypted password in database.properties file 
db.driverClassName=com.mysql.jdbc.Driver
db.url=jdbc:mysql://localhost:3306/db1
db.username=root
db.password=ENC(bmfeQmgP/hJrh+mj6NANKA==)

Now, if I run my application, the following exception appears:

org.jasypt.exceptions.EncryptionOperationNotPossibleException
    at org.jasypt.encryption.pbe.StandardPBEByteEncryptor.decrypt(StandardPBEByteEncryptor.java:981)
    at org.jasypt.encryption.pbe.StandardPBEStringEncryptor.decrypt(StandardPBEStringEncryptor.java:725)
    at org.jasypt.properties.PropertyValueEncryptionUtils.decrypt(PropertyValueEncryptionUtils.java:72)
like image 309
Arun Kumar Avatar asked Mar 21 '13 09:03

Arun Kumar

People also ask

What is Jasypt?

Jasypt is a Java library which allows developers to add basic encryption capabilities to projects with minimum effort, and without the need of having an in-depth knowledge about implementation details of encryption protocols.

What is Jasypt encryptor password?

Jasypt stands for Java simplified encryption which is high security and high-performance encryption library to encrypt the sensitive information. Provides the standard encryption techniques for encryption the passwords, texts, etc.

Is Jasypt secure?

Jasypt is a java library which allows the developer to add basic encryption capabilities to his/her projects with minimum effort, and without the need of having deep knowledge on how cryptography works. High-security, standards-based encryption techniques, both for unidirectional and bidirectional encryption.

What encryption does Jasypt use?

Jasypt by itself does not implement any algorithms, but it lets you use any JCE provider of your choice. AES (encryption) is supported by the Sun JCE provider since Java 8, and it can be used by Jasypt since version 1.9.

1 Answers

The question is most probably out of date, but for future seekers... EncryptionOperationNotPossibleException is a general exception thrown by jasypt to mask other possible exceptions. This exception can occur when:

  • your jdk does not have the JCE unlimited strenght installed (most common case)
  • you had some data in the database that was encrypted before with other password
  • you had some data in database that were not encrypted before and you added encryption to some field
  • jasypt failed to decrypt the encrypted value from db because of some strange corruption of data
  • many many others, you just need to debug to find out the real cause..
like image 69
Nadir Avatar answered Sep 20 '22 20:09

Nadir
Sign in to Comment

Related questions

Spring MVC RestController scope
Use different Spring test context configuration for different test methods
Spring Security OAuth 2.0 - client secret always required for authorization code grant
spring-configuration-metadata.json file is not generated in IntelliJ Idea for Kotlin @ConfigurationProperties class
Thymeleaf cannot detect templates inside spring-boot project
Difference between @target and @within (Spring AOP)
Webflux websocketclient, How to send multiple requests in same session[design client library]
Unable to start embedded Tomcat org.springframework.context.ApplicationContextException
spring add default value to form:select
Reference Spring properties file using path relative to config file
How to pass data between requests of Post/Redirect/Get pattern in Spring MVC?
Spring Data JPA Select Distinct
Spring @Transactional class vs method precedence rules
how to access spring beans from objects not created by spring [duplicate]
CSRF token expires during login
Is there application Scope in spring?
Enabling logging in Spring
Hibernate Open Session in View: Transaction per Request?
Spring Security conditional default-target-url
How do I create a specific date in HSQLDB?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!