There is “null” in “plainPassword” field of the data base. The password is stored in RAM until the next restart of the openfire service.
What is possible?
I’m not exactly sure what you’re asking.
The plainPassword database field is only one of the many possible ways in which Openfire can store user credentials. There is also the encryptedPassword database column in the same table. However, depending on Openfire’s configuration, this table migh not be used at all. Openfire can be configured to use other authentication mechanisms (like the LDAP integration, JDBC authentication provider, etc), which all have their own storage characteristics.
I found solution. I set system property “user.usePlainPassword” = true.
Why do you need to have the plain-text password be stored in the database? From a security perspective, that is bad (this is why Openfire stores hashes only, when possible).
Yes you are right. It’s insecure. But at the moment, the purpose was to make the service work in general. I would like to use encryptedPassword. How to use it?
I’m not sure what you mean.