datasource-password-encryption.html - tomee-site-pub - Git at Google

 <!DOCTYPE html>
 <html lang="en">
   <head>

     <meta charset="UTF-8">
       <title>DataSource Password Encryption</title>
     <meta name="description" content="Apache TomEE">
     <meta name="author" content="Apache TomEE">
     <meta name="google-translate-customization" content="f36a520c08f4c9-0a04e86a9c075ce9-g265f3196f697cf8f-10">
     <meta http-equiv="Pragma" content="no-cache">
     <meta http-equiv="Expires" content="0">
     <meta http-equiv="Cache-Control" content="no-store, no-cache, must-revalidate, max-age=0">

     <!-- Le HTML5 shim, for IE6-8 support of HTML elements -->
     <!--[if lt IE 9]>
       <script src="http://html5shim.googlecode.com/svn/trunk/html5.js"></script>
     <![endif]-->

     <!-- Le styles -->
     <link href="./resources/css/bootstrap.css" rel="stylesheet">
     <link href="./resources/css/prettify.css" rel="stylesheet">
     <!--link href="./resources/css/bootstrap-mods.css" rel="stylesheet"-->
     <link href="./resources/css/main.css" rel="stylesheet">
     <link href="./resources/font-awesome-4.6.3/css/font-awesome.min.css" rel="stylesheet">

     <script type="text/javascript">
         var t = encodeURIComponent(document.title.replace(/^\s+|\s+$/g,""));
         var u = encodeURIComponent(""+document.URL);

       function fbshare () {
           window.open(
                   "http://www.facebook.com/sharer/sharer.php?u="+u,
                   'Share on Facebook',
                   'width=640,height=426');
       };
       function gpshare () {
           window.open(
                   "https://plus.google.com/share?url="+u,
                   'Share on Google+',
                   'width=584,height=385');
       };
       function twshare () {
           window.open(
                   "https://twitter.com/intent/tweet?url="+u+"&text="+t,
                   'Share on Twitter',
                   'width=800,height=526');
       };
       function pinshare () {
           window.open("//www.pinterest.com/pin/create/button/?url="+u+"&media=http%3A%2F%2Ftomee.apache.org%2Fresources%2Fimages%2Ffeather-logo.png&description="+t,
                   'Share on Pinterest',
                   'width=800,height=526');
       };
     </script>

     <!-- Le fav and touch icons -->
     <link rel="shortcut icon" href="./favicon.ico">
     <link rel="apple-touch-icon" href="./resources/images/apple-touch-icon.png">
     <link rel="apple-touch-icon" sizes="72x72" href="./resources/images/apple-touch-icon-72x72.png">
     <link rel="apple-touch-icon" sizes="114x114" href="./resources/images/apple-touch-icon-114x114.png">

     <script src="./resources/js/prettify.js" type="text/javascript"></script>
     <script src="./resources/js/jquery-latest.js"></script>
     <script src="http://platform.twitter.com/widgets.js" type="text/javascript"></script>
     <script src="./resources/js/common.js"></script>
     <script src="./resources/js/prettyprint.js"></script>
     <!--script src="//assets.pinterest.com/js/pinit.js" type="text/javascript" async></script//-->

     <script type="text/javascript">

       var _gaq = _gaq || [];
       _gaq.push(['_setAccount', 'UA-2717626-1']);
       _gaq.push(['_setDomainName', 'apache.org']);
       _gaq.push(['_trackPageview']);

       (function() {
         var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
         ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
         var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
       })();

     </script>
   </head>

   <body>

     <div class="topbar" data-dropdown="dropdown">
       <div class="fill">
         <div class="container">
           <a class="brand" href="./index.html">Apache TomEE</a>
           <ul class="nav">
               <li class="dropdown">
                   <a class="dropdown-toggle" data-toggle="dropdown" href="#">
                   Apache
                       <b class="caret"></b>
                   </a>
                   <ul class="dropdown-menu">
                      <!-- <li><a href="./misc/whoweare.html">Who we are?</a></li> -->
                      <!-- <li><a href="./misc/heritage.html">Heritage</a></li> -->
                      <li><a href="http://www.apache.org">Apache Home</a></li>
                      <!-- <li><a href="./misc/resources.html">Resources</a></li> -->
                      <li><a href="./misc/contact.html">Contact</a></li>
                      <li><a href="./misc/legal.html">Legal</a></li>
                      <li><a href="http://www.apache.org/foundation/sponsorship.html">Sponsorship</a></li>
                      <li><a href="http://www.apache.org/foundation/thanks.html">Thanks</a></li>
                      <li class="divider"/>
                      <li><a href="http://www.apache.org/security">Security</a></li>
                   </ul>
               </li>
               <li><a href="./index.html">Home</a></li>
               <li><a href="./downloads.html">Downloads</a></li>
               <li><a href="./documentation.html">Documentation</a></li>
               <li><a href="./examples-trunk/index.html">Examples</a></li>
               <li><a href="./support.html">Support</a></li>
               <li><a href="./contribute.html">Contribute</a></li>
               <li><a href="./security/index.html">Security</a></li>
           </ul>

             <!-- Google CSE Search Box Begins  -->
             <FORM class="pull-right" id="searchbox_010475492895890475512:_t4iqjrgx90" action="http://www.google.com/cse">
                 <INPUT type="hidden" name="cx" value="010475492895890475512:_t4iqjrgx90">
                 <INPUT type="hidden" name="cof" value="FORID:0">
                 <INPUT size="18" width="130" style="width:130px" name="q" type="text" placeholder="Search">
             </FORM>
             <!--<SCRIPT type="text/javascript" src="http://www.google.com/coop/cse/brand?form=searchbox_010475492895890475512:_t4iqjrgx90"></SCRIPT>-->
             <!-- Google CSE Search Box Ends -->
         </div>
       </div>
     </div>

     <div class="container">


 <div class="page-header">
     <small><a href="./index.html">Home</a></small><br>
     <h1>DataSource Password Encryption

         <div style="float: right; position: relative; bottom: -10px; ">
             <a onclick="javascript:gpshare()" class="gp-share sprite" title="Share on Google+">share [gp]</a>
             <a onclick="javascript:fbshare()" class="fb-share sprite" title="Share on Facebook">share [fb]</a>
             <a onclick="javascript:twshare()" class="tw-share sprite" title="Share on Twitter">share [tw]</a>
             <a onclick="javascript:pinshare()" class="pin-share sprite" title="Share on Pinterest">share [pin]</a>
             <a data-toggle="modal" href="#edit" class="edit-page" title="Contribute to this Page">contribute</a>
         </div>
     </h1>
 </div>

 <p><em>Apache OpenEJB 3.1.2 or later required</em></p>

 <p><em>TomEE 1.5.0 switched from Apache Commons-DBCP to Tomcat-pool. On that specific version, password encryption is not
 available. You can still switch back to Apache Commons DBCP buy adding the following property: DataSourceCreator dbcp.
 On all following versions, the database encryption will be ported and hence available on Tomcat-pool as well.</em></p>

 <p><a name="DataSourcePasswordEncryption-Cipheringpasswords"></a></p>

 <h1>Ciphering passwords</h1>

 <p>Apache OpenEJB now provides an easy and extensible way to cipher databases
 passwords. Not that by default, this feature is not activated so plain
 passwords are used.</p>

 <p><a name="DataSourcePasswordEncryption-Usage"></a></p>

 <h2>Usage</h2>

 <p>Default Plain text password example:</p>

 <pre><code>&lt;Resource id="MySQL Database" type="DataSource"&gt;
     #  MySQL example
     #
     #  This connector will not work until you download the driver at:
     #  http://www.mysql.com/downloads/api-jdbc-stable.html

     JdbcDriver  com.mysql.jdbc.Driver
     JdbcUrl jdbc:mysql://localhost/test
     UserName    test
     Password    Passw0rd
 &lt;/Resource&gt;
 </code></pre>

 <p>3DES ciphered password example.</p>

 <p>Note that the built in 3DES implementation uses <em>a static key</em> to
 encode/decode your password. <em>It's only meant to be a sample on how to implement a Codec. On a real
 enterprise life, you should implement your how relying on an HSM for example.</em>
 The easiest way to do it is to implement the <em>org.apache.openejb.resource.jdbc.cipher.PasswordCipher</em> interface.</p>

 <pre><code>&lt;Resource id="MySQL Database" type="DataSource"&gt;
     #  MySQL example
     #
     #  This connector will not work until you download the driver at:
     #  http://www.mysql.com/downloads/api-jdbc-stable.html

     JdbcDriver  com.mysql.jdbc.Driver
     JdbcUrl jdbc:mysql://localhost/test
     UserName    test

     # ciphered value for Passw0rd using Static3DES codec is
     xMH5uM1V9vQzVUv5LG7YLA==
     Password    xMH5uM1V9vQzVUv5LG7YLA==
     PasswordCipher Static3DES
 &lt;/Resource&gt;
 </code></pre>

 <h1>Hint</h1>

 <p>You can plug your own algorithm to extend Apache OpenEJB built in ones. To
 do such, you just need to implement the </p>

 <h2>Command line tool</h2>

 <p>Apache OpenEJB also provides a command line tool allowing password cipher
 algorithm. Actually, it's useful to get the ciphered value of a plain text
 value using a given algorithm.</p>

 <h3>NAME</h3>

 <p>openejb cipher - OpenEJB Cypher Tool</p>

 <h3>SYNOPSIS</h3>

 <pre><code>openejb cipher [#options]
 </code></pre>

 <h3>DESCRIPTION</h3>

 <p>The OpenEJB Cipher tool is an OPTIONAL tool that allows you to use
 <code>PasswordCipher</code> algorithm to encode/decode values.</p>

 <p><em>This tool isn't package by default on TomEE 1.5.0. It's only available on the standalone distribution. After 1.5.0, it's in TomEE as well.</em></p>

 <p>The OpenEJB Cipher tool can be executed from any directory as long as
 <code>&lt;OPENEJB_HOME&gt;/bin</code> is in the system PATH. Before running this tool you need
 to set the environment variable OPENEJB_HOME to the path of the directory
 where you unpacked the OpenEJB installation. For for the remainder of this
 document we will assume you unpacked OpenEJB into the directory
 C:\openejb-3.1.2.</p>

 <p>In Windows, the cipher tool can be executed as follows:</p>

 <pre><code>`C:\openejb-3.1.2&gt; bin\openejb cipher --help`
 </code></pre>

 <p>In UNIX, Linux, or Mac OS X, the cipher tool can be executed as follows:</p>

 <pre><code>`\[user@host openejb-3.1.2]# bin/openejb cipher --help`
 </code></pre>

 <p>Depending on your OpenEJB version, you may need to change execution bits to
 make the scripts executable.  You can do this with the following command.</p>

 <pre><code>`\[user@host openejb-3.1.2]# chmod 755 bin/openejb`
 </code></pre>

 <p>From here on out, it will be assumed that you know how to execute the right
 openejb script for your operating system and commands will appear in
 shorthand as show below.</p>

 <pre><code>`openejb cipher --help`
 </code></pre>

 <h3>OPTIONS</h3>

 <table>
 <tr><td>-h, --_help_ <td></td>Lists these options and exit.</td></tr>
 <tr><td>-c, --_cipher_ <td></td>Specifies the password cipher implementation to use (default is Static3DES).</td></tr>
 <tr><td>-d, --_decrypt_ <td></td>Switches command line tool to decrypt.</td></tr>
 <tr><td>-e, --_encrypt_ <td></td>Switches command line tool to encrypt (default).</td></tr>
 </table>

 <h3>EXAMPLES</h3>

 <p>Encrypt a plain password using the default algorithm.</p>

 <pre><code>`openejb cipher Passw0rd`
 </code></pre>

 <p>Output</p>

 <pre><code>xMH5uM1V9vQzVUv5LG7YLA==
 </code></pre>


         <div id="edit" class="modal hide fade in" style="display: none; ">
             <div class="modal-header">
                 <a class="close" data-dismiss="modal">x</a>

                 <h3>Thank you for contributing to the documentation!</h3>
             </div>
             <div class="modal-body">
                 <h4>Any help with the documentation is greatly appreciated.</h4>
                 <p>All edits are reviewed before going live, so feel free to do much more than fix typos or links.  If you see a page that could benefit from an entire rewrite, we'd be thrilled to review it.  Don't be surprised if we like it so much we ask you for help with other pages :)</p>
                 <small>NOTICE: unless indicated otherwise on the pages in question, all editable content available from apache.org is presumed to be licensed under the Apache License (AL) version 2.0 and hence all submissions to apache.org treated as formal Contributions under the license terms.</small>
                 <!--[if gt IE 6]>
                 <h4>Internet Explorer Users</h4>
                 <p>If you are not an Apache committer, click the Yes link and enter a <i>anonymous</i> for the username and leave the password empty</p>
                 <![endif]-->

             </div>
             <div class="modal-footer">
                 Do you have an Apache ID?
                 <a href="javascript:void(location.href='https://cms.apache.org/redirect?uri='+escape(location.href))" class="btn">Yes</a>
                 <a href="javascript:void(location.href='https://anonymous:@cms.apache.org/redirect?uri='+escape(location.href))" class="btn">No</a>
             </div>
         </div>
         <script src="./resources/js/bootstrap-modal.js"></script>

         <footer>
             <p>Copyright &copy; 1999-2016 The Apache Software Foundation, Licensed under the Apache License, Version 2.0.
                 Apache TomEE, TomEE, Apache, the Apache feather logo, and the Apache TomEE project logo are trademarks of The Apache Software Foundation.
                 All other marks mentioned may be trademarks or registered trademarks of their respective owners.</p>
         </footer>

     </div> <!-- /container -->

     <!-- Javascript
     ================================================== -->
     <!-- Placed at the end of the document so the pages load faster -->
     <script src="./resources/js/bootstrap-dropdown.js"></script>

   </body>
 </html>
	<!DOCTYPE html>
	<html lang="en">
	<head>

	<meta charset="UTF-8">
	<title>DataSource Password Encryption</title>
	<meta name="description" content="Apache TomEE">
	<meta name="author" content="Apache TomEE">
	<meta name="google-translate-customization" content="f36a520c08f4c9-0a04e86a9c075ce9-g265f3196f697cf8f-10">
	<meta http-equiv="Pragma" content="no-cache">
	<meta http-equiv="Expires" content="0">
	<meta http-equiv="Cache-Control" content="no-store, no-cache, must-revalidate, max-age=0">

	<!-- Le HTML5 shim, for IE6-8 support of HTML elements -->
	<!--[if lt IE 9]>
	<script src="http://html5shim.googlecode.com/svn/trunk/html5.js"></script>
	<![endif]-->

	<!-- Le styles -->
	<link href="./resources/css/bootstrap.css" rel="stylesheet">
	<link href="./resources/css/prettify.css" rel="stylesheet">
	<!--link href="./resources/css/bootstrap-mods.css" rel="stylesheet"-->
	<link href="./resources/css/main.css" rel="stylesheet">
	<link href="./resources/font-awesome-4.6.3/css/font-awesome.min.css" rel="stylesheet">

	<script type="text/javascript">
	var t = encodeURIComponent(document.title.replace(/^\s+\|\s+$/g,""));
	var u = encodeURIComponent(""+document.URL);

	function fbshare () {
	window.open(
	"http://www.facebook.com/sharer/sharer.php?u="+u,
	'Share on Facebook',
	'width=640,height=426');
	};
	function gpshare () {
	window.open(
	"https://plus.google.com/share?url="+u,
	'Share on Google+',
	'width=584,height=385');
	};
	function twshare () {
	window.open(
	"https://twitter.com/intent/tweet?url="+u+"&text="+t,
	'Share on Twitter',
	'width=800,height=526');
	};
	function pinshare () {
	window.open("//www.pinterest.com/pin/create/button/?url="+u+"&media=http%3A%2F%2Ftomee.apache.org%2Fresources%2Fimages%2Ffeather-logo.png&description="+t,
	'Share on Pinterest',
	'width=800,height=526');
	};
	</script>

	<!-- Le fav and touch icons -->
	<link rel="shortcut icon" href="./favicon.ico">
	<link rel="apple-touch-icon" href="./resources/images/apple-touch-icon.png">
	<link rel="apple-touch-icon" sizes="72x72" href="./resources/images/apple-touch-icon-72x72.png">
	<link rel="apple-touch-icon" sizes="114x114" href="./resources/images/apple-touch-icon-114x114.png">

	<script src="./resources/js/prettify.js" type="text/javascript"></script>
	<script src="./resources/js/jquery-latest.js"></script>
	<script src="http://platform.twitter.com/widgets.js" type="text/javascript"></script>
	<script src="./resources/js/common.js"></script>
	<script src="./resources/js/prettyprint.js"></script>
	<!--script src="//assets.pinterest.com/js/pinit.js" type="text/javascript" async></script//-->

	<script type="text/javascript">

	var _gaq = _gaq \|\| [];
	_gaq.push(['_setAccount', 'UA-2717626-1']);
	_gaq.push(['_setDomainName', 'apache.org']);
	_gaq.push(['_trackPageview']);

	(function() {
	var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true;
	ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js';
	var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s);
	})();

	</script>
	</head>

	<body>

	<div class="topbar" data-dropdown="dropdown">
	<div class="fill">
	<div class="container">
	<a class="brand" href="./index.html">Apache TomEE</a>
	<ul class="nav">
	<li class="dropdown">
	<a class="dropdown-toggle" data-toggle="dropdown" href="#">
	Apache
	<b class="caret"></b>
	</a>
	<ul class="dropdown-menu">
	<!-- <li><a href="./misc/whoweare.html">Who we are?</a></li> -->
	<!-- <li><a href="./misc/heritage.html">Heritage</a></li> -->
	<li><a href="http://www.apache.org">Apache Home</a></li>
	<!-- <li><a href="./misc/resources.html">Resources</a></li> -->
	<li><a href="./misc/contact.html">Contact</a></li>
	<li><a href="./misc/legal.html">Legal</a></li>
	<li><a href="http://www.apache.org/foundation/sponsorship.html">Sponsorship</a></li>
	<li><a href="http://www.apache.org/foundation/thanks.html">Thanks</a></li>
	<li class="divider"/>
	<li><a href="http://www.apache.org/security">Security</a></li>
	</ul>
	</li>
	<li><a href="./index.html">Home</a></li>
	<li><a href="./downloads.html">Downloads</a></li>
	<li><a href="./documentation.html">Documentation</a></li>
	<li><a href="./examples-trunk/index.html">Examples</a></li>
	<li><a href="./support.html">Support</a></li>
	<li><a href="./contribute.html">Contribute</a></li>
	<li><a href="./security/index.html">Security</a></li>
	</ul>

	<!-- Google CSE Search Box Begins -->
	<FORM class="pull-right" id="searchbox_010475492895890475512:_t4iqjrgx90" action="http://www.google.com/cse">
	<INPUT type="hidden" name="cx" value="010475492895890475512:_t4iqjrgx90">
	<INPUT type="hidden" name="cof" value="FORID:0">
	<INPUT size="18" width="130" style="width:130px" name="q" type="text" placeholder="Search">
	</FORM>
	<!--<SCRIPT type="text/javascript" src="http://www.google.com/coop/cse/brand?form=searchbox_010475492895890475512:_t4iqjrgx90"></SCRIPT>-->
	<!-- Google CSE Search Box Ends -->
	</div>
	</div>
	</div>

	<div class="container">


	<div class="page-header">
	<small><a href="./index.html">Home</a></small><br>
	<h1>DataSource Password Encryption

	<div style="float: right; position: relative; bottom: -10px; ">
	<a onclick="javascript:gpshare()" class="gp-share sprite" title="Share on Google+">share [gp]</a>
	<a onclick="javascript:fbshare()" class="fb-share sprite" title="Share on Facebook">share [fb]</a>
	<a onclick="javascript:twshare()" class="tw-share sprite" title="Share on Twitter">share [tw]</a>
	<a onclick="javascript:pinshare()" class="pin-share sprite" title="Share on Pinterest">share [pin]</a>
	<a data-toggle="modal" href="#edit" class="edit-page" title="Contribute to this Page">contribute</a>
	</div>
	</h1>
	</div>

	<p><em>Apache OpenEJB 3.1.2 or later required</em></p>

	<p><em>TomEE 1.5.0 switched from Apache Commons-DBCP to Tomcat-pool. On that specific version, password encryption is not
	available. You can still switch back to Apache Commons DBCP buy adding the following property: DataSourceCreator dbcp.
	On all following versions, the database encryption will be ported and hence available on Tomcat-pool as well.</em></p>

	<p><a name="DataSourcePasswordEncryption-Cipheringpasswords"></a></p>

	<h1>Ciphering passwords</h1>

	<p>Apache OpenEJB now provides an easy and extensible way to cipher databases
	passwords. Not that by default, this feature is not activated so plain
	passwords are used.</p>

	<p><a name="DataSourcePasswordEncryption-Usage"></a></p>

	<h2>Usage</h2>

	<p>Default Plain text password example:</p>

	<pre><code><Resource id="MySQL Database" type="DataSource">
	# MySQL example
	#
	# This connector will not work until you download the driver at:
	# http://www.mysql.com/downloads/api-jdbc-stable.html

	JdbcDriver com.mysql.jdbc.Driver
	JdbcUrl jdbc:mysql://localhost/test
	UserName test
	Password Passw0rd
	</Resource>
	</code></pre>

	<p>3DES ciphered password example.</p>

	<p>Note that the built in 3DES implementation uses <em>a static key</em> to
	encode/decode your password. <em>It's only meant to be a sample on how to implement a Codec. On a real
	enterprise life, you should implement your how relying on an HSM for example.</em>
	The easiest way to do it is to implement the <em>org.apache.openejb.resource.jdbc.cipher.PasswordCipher</em> interface.</p>

	<pre><code><Resource id="MySQL Database" type="DataSource">
	# MySQL example
	#
	# This connector will not work until you download the driver at:
	# http://www.mysql.com/downloads/api-jdbc-stable.html

	JdbcDriver com.mysql.jdbc.Driver
	JdbcUrl jdbc:mysql://localhost/test
	UserName test

	# ciphered value for Passw0rd using Static3DES codec is
	xMH5uM1V9vQzVUv5LG7YLA==
	Password xMH5uM1V9vQzVUv5LG7YLA==
	PasswordCipher Static3DES
	</Resource>
	</code></pre>

	<h1>Hint</h1>

	<p>You can plug your own algorithm to extend Apache OpenEJB built in ones. To
	do such, you just need to implement the </p>

	<h2>Command line tool</h2>

	<p>Apache OpenEJB also provides a command line tool allowing password cipher
	algorithm. Actually, it's useful to get the ciphered value of a plain text
	value using a given algorithm.</p>

	<h3>NAME</h3>

	<p>openejb cipher - OpenEJB Cypher Tool</p>

	<h3>SYNOPSIS</h3>

	<pre><code>openejb cipher [#options]
	</code></pre>

	<h3>DESCRIPTION</h3>

	<p>The OpenEJB Cipher tool is an OPTIONAL tool that allows you to use
	<code>PasswordCipher</code> algorithm to encode/decode values.</p>

	<p><em>This tool isn't package by default on TomEE 1.5.0. It's only available on the standalone distribution. After 1.5.0, it's in TomEE as well.</em></p>

	<p>The OpenEJB Cipher tool can be executed from any directory as long as
	<code><OPENEJB_HOME>/bin</code> is in the system PATH. Before running this tool you need
	to set the environment variable OPENEJB_HOME to the path of the directory
	where you unpacked the OpenEJB installation. For for the remainder of this
	document we will assume you unpacked OpenEJB into the directory
	C:\openejb-3.1.2.</p>

	<p>In Windows, the cipher tool can be executed as follows:</p>

	<pre><code>`C:\openejb-3.1.2> bin\openejb cipher --help`
	</code></pre>

	<p>In UNIX, Linux, or Mac OS X, the cipher tool can be executed as follows:</p>

	<pre><code>`\[user@host openejb-3.1.2]# bin/openejb cipher --help`
	</code></pre>

	<p>Depending on your OpenEJB version, you may need to change execution bits to
	make the scripts executable. You can do this with the following command.</p>

	<pre><code>`\[user@host openejb-3.1.2]# chmod 755 bin/openejb`
	</code></pre>

	<p>From here on out, it will be assumed that you know how to execute the right
	openejb script for your operating system and commands will appear in
	shorthand as show below.</p>

	<pre><code>`openejb cipher --help`
	</code></pre>

	<h3>OPTIONS</h3>

	<table>
	<tr><td>-h, --_help_ <td></td>Lists these options and exit.</td></tr>
	<tr><td>-c, --_cipher_ <td></td>Specifies the password cipher implementation to use (default is Static3DES).</td></tr>
	<tr><td>-d, --_decrypt_ <td></td>Switches command line tool to decrypt.</td></tr>
	<tr><td>-e, --_encrypt_ <td></td>Switches command line tool to encrypt (default).</td></tr>
	</table>

	<h3>EXAMPLES</h3>

	<p>Encrypt a plain password using the default algorithm.</p>

	<pre><code>`openejb cipher Passw0rd`
	</code></pre>

	<p>Output</p>

	<pre><code>xMH5uM1V9vQzVUv5LG7YLA==
	</code></pre>




	<div id="edit" class="modal hide fade in" style="display: none; ">
	<div class="modal-header">
	<a class="close" data-dismiss="modal">x</a>

	<h3>Thank you for contributing to the documentation!</h3>
	</div>
	<div class="modal-body">
	<h4>Any help with the documentation is greatly appreciated.</h4>
	<p>All edits are reviewed before going live, so feel free to do much more than fix typos or links. If you see a page that could benefit from an entire rewrite, we'd be thrilled to review it. Don't be surprised if we like it so much we ask you for help with other pages :)</p>
	<small>NOTICE: unless indicated otherwise on the pages in question, all editable content available from apache.org is presumed to be licensed under the Apache License (AL) version 2.0 and hence all submissions to apache.org treated as formal Contributions under the license terms.</small>
	<!--[if gt IE 6]>
	<h4>Internet Explorer Users</h4>
	<p>If you are not an Apache committer, click the Yes link and enter a <i>anonymous</i> for the username and leave the password empty</p>
	<![endif]-->

	</div>
	<div class="modal-footer">
	Do you have an Apache ID?
	<a href="javascript:void(location.href='https://cms.apache.org/redirect?uri='+escape(location.href))" class="btn">Yes</a>
	<a href="javascript:void(location.href='https://anonymous:@cms.apache.org/redirect?uri='+escape(location.href))" class="btn">No</a>
	</div>
	</div>
	<script src="./resources/js/bootstrap-modal.js"></script>

	<footer>
	<p>Copyright © 1999-2016 The Apache Software Foundation, Licensed under the Apache License, Version 2.0.
	Apache TomEE, TomEE, Apache, the Apache feather logo, and the Apache TomEE project logo are trademarks of The Apache Software Foundation.
	All other marks mentioned may be trademarks or registered trademarks of their respective owners.</p>
	</footer>

	</div> <!-- /container -->

	<!-- Javascript
	================================================== -->
	<!-- Placed at the end of the document so the pages load faster -->
	<script src="./resources/js/bootstrap-dropdown.js"></script>

	</body>
	</html>