Password with Central Encryption Custom Field

Owned by jfink (Deactivated)
Last updated: Mar 26, 2020
3 min read

If you want to create a custom field with a centrally encrypted password, select Password with Central Encryption, enter a name and associate it to a screen. This is useful if the following requirements are to be met:

  • You want users to get a password or other data from a password field by entering their user credentials (password to log-in to Jira)

  • The user doesn’t want to enter a specific encryption key

  • The password should be stored encrypted in the database

  • Users should not know the encryption key but the keys should be stored at any network location Jira can connect to

  • As soon as the user creates a new password it is automatically encrypted with the given private key

  • As soon as the user enters user credentials to view a password it is automatically decrypted with the given public key

There is only one private/public key pair at a network location (or two different locations).

The private/public key pair is not related to user passwords in any way.

The user needs to enter his user credentials just to access the field. The encryption decryption happens in background.

Users don’t need their own keys.

How to add the custom field

Then adjust the configuration of the field and edit the Central Encryption:

In the configuration, the admin needs to define a folder path to the encryption private key (just text fields, no upload input), which has to be a private key file. Furthermore, the admin needs to define a folder path to the decryption key. This has to be a public key file. Jira must be able to access this location. Local and remote paths are possible.

How to store the password

  1. User enters a password

  2. User clicks on encrypt icon

  3. Jira automatically encrypts the password with the given private key

  4. Jira stores the encrypted value in the database

How to get the password

  1. User enters the user credentials into the password field

  2. User clicks on decrypt icon

  3. Jira gets the encrypted value from the database

  4. Jira decrypts the encrypted value from the database with the configured public key

 

© 2023, STAGIL