SpringBoot配置信息加密

文章介绍基于jasypt加密算法对springboot项目的配置信息（如密码等敏感信息）进行加密的详细实现步骤，以期帮助服务提高安全性能，实测可用。该加密方式的实现原理后续再作介绍。

1、配置项

server:
  port: 8081

spring:
  datasource:
    driver-class-name: org.postgresql.Driver
    url: jdbc:postgresql://*.*.*.*:5432/public?currentSchema=gxpt&useSSL=false&useUnicode=true&characterEncoding=UTF-8
    username: user
    # jasypt加密后的密码
    password: ENC(jACln5JMwhsI0ELEIIi3lGCcNn22****)

# jasypt.encryptor.password 用于接收启动项目时传入的配置参数：
# java -jar your-app.jar --jasypt.encryptor.password=你的密钥
jasypt:
#  crack: Gxpt@2024
  crack: ${
   
   jasypt.encryptor.password}
  
mybatis:
  mapper-locations: classpath:mapper/*.xml
  type-aliases-package: com.chf.pojo
  configuration:
    log-impl: org.apache.ibatis.logging.stdout.StdOutImpl

2、依赖项

<dependencyManagement>
    <dependencies>
        <dependency>
            <groupId>org.springframework.boot</groupId>
            <artifactId>spring-boot-dependencies</artifactId>
            <version>2.7.14</version>
            <type>pom</type>
            <scope>import</scope>
        </dependency>
    </dependencies>
</dependencyManagement>
<dependencies>
    <dependency>
        <groupId