Obfuscated Values
Celfocus eSign provides a service that allows users to add an extra layer of protection on sensitive values. This is done through the existence of two methods:
-
Web services that provides an obfuscate and de-obfuscate endpoints
-
An expression (${enc:value})
Web Service
As stated above, eSign provides services that allow for the obfuscation and de-obfuscation of a given value. This might be helpful in the eventuality that the user needs an extra layer of protection on the information that is being used.
Obfuscate
| Service | Description | ||
|---|---|---|---|
obfuscate |
Obfuscates a given message |
||
Parameter |
Type |
Description |
|
message |
String |
A value (message) that will be obfuscated |
|
Returns |
Type |
Description |
|
obfuscatedMessage |
ObfuscationResult |
A response object containing the provided message obfuscated |
|
De-obfuscate
| Service | Description | ||
|---|---|---|---|
deobfuscate |
De-obfuscates a given message |
||
Parameter |
Type |
Description |
|
message |
String |
A value (message) that will be de-obfuscated |
|
Returns |
Type |
Description |
|
de-obfuscatedMessage |
ObfuscationResult |
A response object containing the provided obfuscated message de-obfuscated |
|
${enc:value} Expression
The ${enc:value} expression is applied in the context of the esign.config file. It provides a way to encode, in a similar way to the obfuscate service, a given configuration value so that it will not appear in clear text on the several places that eSign properties show up, such as the Monitoring page’s properties list or log files.
{
"properties":{
...
"service.password": "${enc:/bUmEz6O3+ugP4kdcR24ew==}" //Simple password with value 1234 encoded
...
}
}