Encrypt a HTTP authenticate password for FGLPROFILE

Use the fglpass tool to encrypt a password to store in the FGLPROFILE file.

  1. Find the HTTP Authenticate entry with the password you want to encrypt:
    authenticate.myentry.login    = "mylogin"
    authenticate.myentry.password = "mypassword"
  2. Add the certificate and its private key in the FGLPROFILE file as follows:
    security.mykey.certificate = "MyCertificate.crt"
    security.mykey.privatekey  = "MyPrivateKey.pem"
  3. Encrypt the password with fglpass:
    $ fglpass -e -c MyCertificate.crt
    Enter password :mypassword
    The fglpass output looks like the following:
    SFJmlVH63kuyXfiVfq6bHo5+nlQZpVjSHfF2msET3S9HTpZUt4NblP4=BASE64 END

    The encrypted password is enclosed between BASE64 BEGIN and BASE64 END. In the above example, the cyphertext is wrapped for display purposes only.

  4. Replace the clear password with the encrypted one, and specify the key used to encrypt it (mykey in our example):
    authenticate.myentry.login = "mylogin"
    authenticate.myentry.password.mykey = "dBy3E5JCVxuoxsR+

    Do not forget to put quotes around the base64 form; otherwise the equals character ('=') is interpreted during the loading of FGLPROFILE. The long line of text in the example above is wrapped for display purposes only.