カスタム暗号化
In addition to the basic and advanced encryption methods that you can use in Bitbucket Data Center and Server, you can also choose to create your own Cipher. This might be especially useful if:
パスワードを保存するのに特定のボールトを使用する必要がある。
you want to use encryption algorithms beyond those we ship with Bitbucket
ステップ 1. Maven プロジェクトを作成して API 依存関係を取得する
Get
password-cipher-apiandpassword-cipher-basedependencies.<Bitbucket_installation_directory>/atlassian-bitbucket/WEB-INF/libに移動します。以下の jar ファイルをコピーします。
password-cipher-api-<version>.jar: this file contains the API
(optional) password-cipher-base-<version>.jar: this file contains some sample implementations
Maven プロジェクトを作成します。
Go to
resourcesand create a new folder, namedlibs.jar ファイルを
libsフォルダにコピーします。Next, use the following pom:
<?xml version="1.0" encoding="UTF-8"?> <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0http://maven.apache.org/xsd/maven-4.0.0.xsd"> <modelVersion>4.0.0</modelVersion> <groupId><your_group_ID></groupId> <artifactId><your_artifact_ID></artifactId> <version><your_version></version> <properties> <maven.compiler.source>1.8</maven.compiler.source> <maven.compiler.target>1.8</maven.compiler.target> </properties> <repositories> <repository> <id>local-maven-repo</id> <url>file:///${project.basedir}/libs</url> </repository> </repositories> <build> <resources> <resource> <directory>src/main/resources/libs</directory> <excludes> <exclude>*</exclude> </excludes> <filtering>false</filtering> </resource> </resources> </build> <dependencies> <dependency> <groupId>com.atlassian.db.config</groupId> <artifactId>password-cipher-api</artifactId> <version><api_version></version> <scope>provided</scope> </dependency> <dependency> <groupId>com.atlassian.db.config</groupId> <artifactId>password-cipher-base</artifactId> <version><base_version></version> <scope>provided</scope> </dependency> </dependencies> </project>
ステップ 2. Cipher インターフェイスを実装する
The Cipher interface contains two methods that you need to implement according to your requirements; encrypt and decrypt. decrypt is called during Bitbucket startup, which means that long-running tasks can affect the startup time. encrypt is not called by Bitbucket, as it's only used in the encryption tool.
You can use Base64Cipher and AlgorithmCipher as examples.
ステップ 3. 実装をテストする
The encryption tool described in Basic encryption and Advanced encryption, uses the same code as Bitbucket to decrypt the password. You can use it to test your implementation.
CLI と jar が同じフォルダーにあるとします。
java -cp "./*" com.atlassian.db.config.password.tools.CipherTool -c your.package.here.ClassNameステップ 4. ライブラリを利用可能にする
Bitbucket must be able to access your library. Your class will be instantiated using reflection. Put the library in the following directory:
<Bitbucket_home_directory>/lib