Expert Oracle and Java Security: Programming Secure Oracle Database Applications with Java

Hide the APPVER Connection String

We are not going to solve the embedded password problem, and you might be wondering why. In a nutshell, this is a “chicken or egg” problem. Perhaps we could hide our passwords in Oracle database, but we would need an Oracle password to request them from the database.

You cannot talk to Oracle database without a user/password, so the question arises of where to store the password. We have solved that issue for all our application passwords except for the gatekeeper account, appver. So let's look at some of the prospective solutions for hiding that password.

Get It from a Second Source/Server

Well, if we don't want the password in our code, and we can't get it from Oracle database (without a password), perhaps ...

Get Expert Oracle and Java Security: Programming Secure Oracle Database Applications with Java now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Expert Oracle and Java Security: Programming Secure Oracle Database Applications with Java by David Coffin

Hide the APPVER Connection String

Get It from a Second Source/Server

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly