To provide greater security for user accounts stored in the users.properties file, you can use the GENSPRINGPWD command-line utility (oe-install-dir/bin/genspringpwd). The utility accepts a clear-text password as input, and generates an encrypted password. bcrypt is the default and the only supported hashing algorithm.

GENSPRINGPWD syntax

genspringpwd password
password
A character string representing the password to be encrypted.

Store encrypted passwords

After you create an encrypted password with GENSPRINGPWD, copy and paste the generated value to the password field in the corresponding users.properties entry. Use the following syntax to store passwords in users.properties:
username=password, role1, [role2, ..., roleN, ] { enabled | disabled }