Configuring the Encrypted Server Keychain
By default, keychain files protect stored passwords using an obfuscation scheme. You can override this scheme by explicitly naming the secret provider for encryption:
<secret-provider>
com.terracotta.management.security.ConsoleFetchingBackend
</secret-provider>
This secret provider is also shown in the configuration example above.
Tip: Overriding the Configured Secret Provider - You can override the configured secret provider using the property com.terracotta.SecretProvider . For example, to use obfuscation without changing configuration, use
com.terracotta.SecretProvider=
com.terracotta.management.security.ObfuscatingSecretProviderBackend