[
https://issues.apache.org/jira/browse/JSPWIKI-205?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
David Vittor updated JSPWIKI-205:
---------------------------------
Attachment: encryption.patch
I've just uploaded a far more advanced version of this patch.
It still has a "CryptoProvider" but this is now controlled by a "CryptoManager"
which interfaces directly with "WikiEngine". There are some test cases there
which allow you to see how the EncryptedPageFilter works. There is also a
"EncryptPlugin" that allows sections of a page to be encrypted (although
content can still be seen in raw view).
There are 3 outstanding tasks I have for this patch:
* 1. Update the comments, as they are slightly outdated now
* 2. Implement a "pagename filter param" so only certain pagenames are
encrypted/decrypted
* 3. Update the wiki documentation
However I would like this patch to go in, to a upcoming release if possible...
> Obfuscate on disk content type
> ------------------------------
>
> Key: JSPWIKI-205
> URL: https://issues.apache.org/jira/browse/JSPWIKI-205
> Project: JSPWiki
> Issue Type: Improvement
> Components: Core & storage
> Reporter: Chris Lialios
> Priority: Trivial
> Attachments: BasicOverview.doc, EncryptingProviderSource.zip,
> encryption.patch, encryption.patch
>
>
> We would like to store passwords within the wiki pages.
> Securing the page is trivial, however the contents on disk remain clear text.
> It would be very nice to have a page type that could be stored in an
> obfuscated form on disk.
> As an addition have a secondary password to display/edit the encrypted
> contents on disk for those who do not want to use wiki security on the page.
> I suspect this will have potentially drastic effects on the revisions
> process, but it would be a small price to pay for security.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
