Programming Applications for Derby User Authentication

• Programming the Application to Provide the User and Password
• Login Failure Exceptions
• Authorization Identifiers, User Authentication, and User Authorization

In the DriverManager.getConnection call, an application can provide the user name and password:

• separately as arguments to the following signature of the method: getConnection(String url, String user, String password)

  Connection conn = DriverManager.getConnection(
      "jdbc:derby:myDB", "mary", "little7xylamb");
  

• as attributes to the database connection URL

  Connection conn = DriverManager.getConnection(
      "jdbc:derby:myDB;user=mary;password=little7xylamb");
  

• by setting the user and password properties in a Properties object as with other connection URL attributes

  Properties p = new Properties();
  p.put("user", "mary");
  p.put("password", "little7xylamb");
  Connection conn = DriverManager.getConnection(
      "jdbc:derby:myDB", p);
  

Note:

The password is not encrypted. When you are using Derby in the context of a server framework, the framework should be responsible for encrypting the password across the network. If your framework does not encrypt the password, consider using SSL.

For information about the treatment of user names within the Derby system, see Users and Authorization Identifiers.

If user authentication is turned on and a valid user name and password are not provided, SQLException 08004 is raised.

ERROR 08004: Connection refused : Invalid authentication.