starred/cloudbeaver
1
0
Fork 0
mirror of https://github.com/dbeaver/cloudbeaver.git synced 2026-03-04 08:52:27 -05:00
Code Issues 420 Projects Packages Wiki Activity
Page: How to change Java security properties
Pages
API and integration AWS Cloud explorer AWS IAM AWS OpenID Authentication AWS OpenID database access via Okta AWS Overview AWS SAML database access via Okta AWS Settings Access to an existing database connection with a link Accessibility Guide Adding new database drivers Admin Password Recovery Administration Users Provisioning Administration Anonymous Access Configuration Authentication Database Native Authentication Microsoft Entra ID Authentication MongoDB Authentication Oracle Wallet Authentication PostgreSQL Pgpass Authentication Salesforce Authentication methods Auto and Manual commit modes Azure Permissions Basic operations Build and deploy Client Side Scripting Cloud Explorer Cloud Storage CloudBeaver AWS deployment on the AWS Marketplace CloudBeaver Community deployment from docker image CloudBeaver Community deployment in Google Cloud CloudBeaver Community deployment in Microsoft Azure CloudBeaver Community deployment on the AWS Marketplace CloudBeaver Deployment CloudBeaver Enterprise Update CloudBeaver Enterprise deployment from docker compose CloudBeaver Enterprise deployment from docker image CloudBeaver Enterprise deployment in AWS CloudBeaver Enterprise deployment in Google Cloud CloudBeaver Enterprise deployment in Microsoft Azure CloudBeaver Enterprise CloudBeaver SSL certificate configuration CloudBeaver Styling components CloudBeaver Workspace Backup CloudBeaver and Nginx CloudBeaver customer technical support information CloudBeaver localization CloudBeaver overview CloudBeaver release cycles Code of Conduct Cognito OpenID Authentication Command line parameters Configuring HTTPS for Jetty server Configuring server datasources Connect Tableau to a database using DBeaver Proxy Driver Connection Management Connection Templates Management Connection configuration Contribute your code Create Connection Custom Plugin DB Navigator Settings menu DB Navigator folders DB Navigator toolbar DBeaver Proxy driver Data Filters Data Ordering Data editor Data export Data import Database Navigator Database Object Editor Database driver CSV Database driver Files MultiSource Database driver JSON Database driver Parquet Database driver XLSX Database driver XML Demo Server Develop in Eclipse Develop in IDEA Develop in VS Code Differences between license types Domain Manager Driver management Drivers Management Entity Diagrams FAQ File based driver properties Frontend development guidelines Frontend technical overview Generate API access token Getting started Global Permissions Google authentication GraphQL API overview Grouping Panel Home How to Import License How to Migrate your CloudBeaver Enterprise Workspace How to Reassign License How to Update License How to access query history database How to change Java security properties How to connect DBeaver or CloudBeaver to PostgreSQL on a separate VM in Azure Initial data configuration JSON and Document View JWT authentication Kerberos Authentication LDAP Authentication Local Access Authentication Local Preferences Log Viewer Log customization Managing Charts Managing Preferences Managing cloud deployed services Microsoft Entra ID authentication Multi server license Multiple Server URLs NTLM User Authentication Okta OpenID Authentication OpenID Package localization Password policy Plugin system Pre configured permissions for connections Product configuration parameters Product settings authentication Product settings connections Product settings data export Product settings data spreadsheet Product settings erd Product settings navigation tree Properties Editor Proxy Configuration Query Execution Plan Query History Query Manager Query manager database configuration Resource Loading Resource Manager Result Details Panel Reverse proxy header authentication Run GraphQL requests from CLI SAML SQL Assist and Auto Complete SQL Editor SQL Formatting SSH Configuration SSL Configuration Search and Replace Secret Providers Security in CloudBeaver Server API explorer Server Architecture Server Database Server Output Server configuration administration Server configuration Session Manager Settings Shortcuts Simple and Advanced View Single Sign On Snowflake OpenID database access via Okta Supported databases Teams User credentials storage Users Value Panel Visual Query Builder WebSockets Working with spatial GIS data Workspace Location Workspace on AWS and S3 Storage
4 How to change Java security properties
dbeaver-devops edited this page 2025-09-15 15:36:04 +00:00
Table of Contents

Table of contents

Java security settings can be customized by overriding the default security properties. This is useful when enabling legacy protocols (e.g., TLS 1.0), modifying cryptographic algorithms, or adjusting security policies.

Warning

: Re-enabling deprecated security features (e.g., TLS 1.0, weak ciphers) exposes your system to known vulnerabilities. Only do this if required for compatibility with legacy systems, and consider upgrading your security infrastructure instead.

Steps to override Java security properties

  1. Create a new file, e.g., java_custom.secure.properties, to override default security settings.

  2. Modify the required security properties. For example, to enable TLS 1.0 (which is disabled by default), remove TLSv1 from jdk.tls.disabledAlgorithms value:

    • Default setting (TLS 1.0 is disabled):
    jdk.tls.disabledAlgorithms=SSLv3, TLSv1, TLSv1.1, DTLSv1.0, RC4, DES, \
MD5withRSA, DH keySize < 1024, EC keySize < 224, 3DES_EDE_CBC, anon, NULL, \
ECDH
    • Updated setting (TLS 1.0 is enabled):
    jdk.tls.disabledAlgorithms=SSLv3, TLSv1.1, DTLSv1.0, RC4, DES, \
 MD5withRSA, DH keySize < 1024, EC keySize < 224, 3DES_EDE_CBC, anon, NULL, \
ECDH

    You can modify other properties in the same way.

  3. Map the file in the container.

    • Ensure the custom file is accessible inside the container where Java runs. In a Dockerized environment, map it to a known location.

    • Update your docker-compose.yml file with the following lines to place the file inside the cloudbeaver container:

    volumes:
  - ./java_custom.secure.properties:/location//java.secure.properties
environment:
  - JAVA_OPTS="-Djava.security.properties=/location/with/java.secure.properties"

  4. Restart the CloudBeaver to apply the changes.

CloudBeaver Documentation

CloudBeaver - Web Database Manager