Project security
Note: This feature is available in Lite, Enterprise, Ultimate and Team editions only.
DBeaver supports local storage for connection secure data. It includes:
- Database server user credentials
- SSH tunnel user credentials
- Proxy user credentials
By default, user names and passwords are stored in the credentials-config.json
file, encrypted with a DES key. However,
this key is not secure as it is publicly available in DBeaver source files, making it possible for unauthorized
third parties to decrypt the file using external software. For more secure options, you can read about security options
in DBeaver PRO.
It is possible to set a Master password for all projects in a local workspace.
The side effect of this configuration is that you cannot share your connections (with password) between different users because user credentials are stored in a completely separate location, and they are protected by a local user password.
For more information about Master password, refer to the dedicated article Managing Master Password.
You can disable the default password provider and enable a "Windows Integration" provider. This provider does not need a master password but it uses a randomly generated password stored in a local user secure storage (in Windows). This is easier (as you don't need to remember the master password) but less secure (anybody who has access to your Windows user account will have access to DBeaver's stored credentials).
You may specify a password for a project. It will encrypt all the project's configurations with this password. Also, you will be able to share your project settings with other users (you will need to pass the project password as well).
In order to enable a project password open the project properties. You can do this by:
- Clicking on main menu File->Project security
- Clicking on "Configure" icon in the project explorer view toolbar and switching to the Project Security tab
- Pressing ALT+Enter on a project element in
Projects
view and switch to Project Security tab
On the project security page click on the "Set Password" button to enable the project password. Click on Clear to disable it (you will need to enter a current project password to clear it).
- Installation
- Application Window Overview
- Views
- Database Object Editor
- SQL Editor
- Search
- Schema compare
- Using Liquibase in DBeaver
- Data compare
- MockData generation
- Spelling
- Dashboards, DB monitoring
- Projects
- Managing Master password
- Security in PRO products
- Certificate Management
- Bookmarks
- Shortcuts
- Accessibility
- Sample Database
-
Database Connections
- Edit Connection
- Invalidate/Reconnect to Database
- Disconnect from Database
- Change current user password
- Advanced settings
- Cloud configuration settings
- Local Client Configuration
- Connection Types
- Configure Connection Initialization Settings
- Tableau integration
- Transactions
- Drivers
- Tasks
- Cloud Explorer
- Cloud Storage
- Classic
- Cloud
- Changing interface language
- DBeaver extensions - Office, Debugger, SVG
- Installing extensions - Themes, version control, etc
- User Interface Themes
- Command Line
- Reset UI settings
- Reset workspace
- Troubleshooting system issues
- Posting issues
- Log files
- JDBC trace
- Thread dump
- Managing connections
- Managing variables
- Managing drivers
- Managing preferences
- Managing restrictions
- Windows Silent Install
- Snap installation