With Spring-Boot auto-configured JavaMailSender, how to support encrypted (username/password) properties using Jasypt library?

Question

JavaMailSender is being auto configured in my Spring Boot application. How can I use annotations to allow encrypted values in my properties file for the properties "spring.mail.username"and "spring.mail.password" using the Jasypt library? please help.

import javax.mail.MessagingException;
import javax.mail.internet.MimeMessage;

import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.mail.javamail.JavaMailSender;
import org.springframework.mail.javamail.MimeMessageHelper;
import org.springframework.web.bind.annotation.RequestMapping;
import org.springframework.web.bind.annotation.RestController;

@RestController
public class SimpleMailController {

@Autowired
private JavaMailSender sender;

Have you tried reading https://www.baeldung.com/spring-boot-jasypt — Heuriskos, Jan 23 '19 at 10:22
I read it but it did not help. I was able to solve by adding @EnableEncryptableProperties to my Application class. Thanks. — Abdullah, Jan 24 '19 at 12:18
Glad to hear you have resolved your problem. You could consider adding your comment as an answer. — Heuriskos, Jan 24 '19 at 13:16
Thanks @AlexB I have added the answer to this particular question. — Abdullah, Jan 25 '19 at 05:12

score 1 · Accepted Answer · answered Jan 25 '19 at 05:11

1

I was able to crack it.

Add the annotation @EnableEncryptableProperties to my Application class.
Add jasypt spring boot starter dependency in gradle script -

compile('com.github.ulisesbocchio:jasypt-spring-boot-starter:2.0.0')

All the properties used in my application now support encrypted values by default.

answered Jan 25 '19 at 05:11

Abdullah

139
3
17

Your answer seems to be missing something. Don't you also need to specify the property file with "@EncryptablePropertySources({@EncryptablePropertySource("classpath:encrypted.properties")})"? Even when I do this, JavaMailSender doesn't get the password. Did you also set a system environment variable for jasypt.encryptor.password? Thanks! – Mike Mar 24 '19 at 18:55
I did not need to use the annotation @EncryptablePropertySources in my application. The property jasypt.encryptor.password should ideally be passed as a runtime variable. For testing purpose, add it in the same properties file you want to encrypt. – Abdullah Mar 26 '19 at 05:37
I would like to add one more observation. The above solution did not work when jasypt version was 3.0.3. When I downgraded to 2.0.0 the solution worked. Refer to comments – A-K Jun 05 '20 at 09:16

With Spring-Boot auto-configured JavaMailSender, how to support encrypted (username/password) properties using Jasypt library?

1 Answers1