Data in the database will not contain any explicit secret data. All secret data is
stored encrypted with encryption keys held in file
/opt/savapage/server/data/encryption.properties. This
file is generated by SavaPage at initial installation and contains randomized
encryption keys unique for this particular installation instance. Access to this
file is restricted to the savapage user.
Make a backup of encryption.properties immediately
after installation and store it at a secure place, so you can restore it in
case of a server crash or when you need to migrate to a new server.
The encryption.properties file is
crucial for decrypting secret data in the database
and verifying the authenticity of document signatures. So,
when you restore a database backup on a different server, be sure to also
restore this file.
The following secret data is stored encrypted in the database:
Passwords.
PIN codes.
Authentication tokens.
API keys.