bitbucket seems to be storing the external db password in cleartext in the bitbucket.properties file. Is there a way to encrypt/obfuscate the password to avoid it being compromised?
Currently the database password cannot be encrypted and must be stored in plaintext format. We have a feature request open for this, which we're tracking as BSERV-10043: Encrypt Database Password in bitbucket.properties or use integrated authentication.
To protect the password, your best strategy is to make sure file permissions restrict users that shouldn't be allowed to access the file.
Premier Support Engineer
Hello! My name is Mark Askew and I am a Premier Support Engineer for products Bitbucket Server/Data Center, Fisheye & Crucible. Today, I want to bring the discussion that Jennifer, Matt, and ...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs