17.6. Encrypted Secrets

Data in the database will not contain any explicit secret data. All secret data is stored encrypted with encryption keys held in file /opt/savapage/server/data/encryption.properties. This file is generated by SavaPage at initial installation and contains randomized encryption keys unique for this particular installation instance. Access to this file is restricted to the savapage user.


Make a backup of encryption.properties immediately after installation and store it at a secure place, so you can restore it in case of a server crash or when you need to migrate to a new server.


The encryption.properties file is crucial for decrypting secret data in the database and verifying the authenticity of document signatures. So, when you restore a database backup on a different server, be sure to also restore this file.

The following secret data is stored encrypted in the database: