In Talend ESB, most of the security relevant properties, like passwords, are stored as configuration files in etc/*.cfg files and are loaded by Karaf using the OSGI ConfigAdmin. To avoid storing them as clear text properties in Talend ESB, but also for CXF key stores and general property files not managed by OSGI, Talend provides encryption capabilities, based on Jasypt, to encrypt and decrypt them on the fly, before being used by the ESB components.
In the following sections, you will find how you can configure your Talend ESB Container to be able to
encrypt and decrypt your security properties. Encrypted property values are generally
wrapped in a ENC() function.