...
You want users to get a password or other data from a password field by entering their user credentials (password to log-in to Jira)
The user doesn’t want to enter a specific encryption key
The password should be stored encrypted in the database
Users should not know the encryption key but the keys should be stored at any network location Jira can connect to
As soon as the user creates a new password it is automatically encrypted with the given private key
As soon as the user enters user credentials to view a password it is automatically decrypted with the given public key
There is only one private/public key pair at a network location (or two different locations).
The private/public key pair is not related to user passwords in any way.
The user needs to enter his user credentials just to access the field. The encryption decryption happens in background.
Users don’t need their own keys.
How to add the custom field
...
In the configuration, the admin needs to define a folder path to the encryption private key (just text fields, no upload input), which has to be a private key file. Furthermore, the adminneeds to define a folder path to the decryption key. This has to be a public key file. Jira must be able to access this location. Local and remote paths are possible.
...