Bug 34321 - password encryption for HTTP Authorization Manager
Summary: password encryption for HTTP Authorization Manager
Alias: None
Product: JMeter
Classification: Unclassified
Component: Main (show other bugs)
Version: 2.0.3
Hardware: Other other
: P2 enhancement (vote)
Target Milestone: ---
Assignee: JMeter issues mailing list
Depends on:
Reported: 2005-04-06 10:19 UTC by christoph.breu
Modified: 2017-09-02 19:23 UTC (History)
3 users (show)


Note You need to log in before you can comment on or make changes to this bug.
Description christoph.breu 2005-04-06 10:19:36 UTC
HTTP Authorization Manager should save the passwords encrypted instead of clear
text saving in the .jmx-file.

keywords: password encryption http authorization
Comment 1 Sebb 2007-09-02 14:08:37 UTC
See also bug 42245
Comment 2 Michael Osipov 2017-02-07 10:45:41 UTC
Symmetric encryption requries a key stored somewhere. You still need that key for JMeter to decrypt your data. How will it make it any better?
For what it is worth, I have factored out all passwords to CSV files to be read at runtime. You get rid of plain passwords in the JMX files if you intend to commit them somewhere.