server.ssl.key-store-password encryption in application.properties

Document ID : KB000103943
Last Modified Date : 02/07/2018
Show Technical Document Details
Question:
Can the server.ssl.key-store-password=, which is part of the application.properties mentioned in the chapter "Securing the Backend" be encrypted with UCYBCRYP?
Answer:
The server.ssl.key-store-password is a spring boot variable and not a custom one.
It is not possible to use an encrypted password here.

A workaround would be to define an environment variable and put the clear text password in the variable before starting the back end: 

server.ssl.key-store-password=${KEY_STORE_PASSWORD}