org.pjdbc.drivers.DataMaskingDriver

All Implemented Interfaces:: Driver

@DriverCapability(prefix="mask", description="Masks sensitive data in query results", capabilities={"masking","security"}) @DriverParameter(name="columns",type=STRING,description="Semicolon-separated column name patterns (regex) to mask") @DriverParameter(name="strategy",type=STRING,description="Masking strategy",defaultValue="PARTIAL",enumValues={"FULL","PARTIAL","EMAIL","REDACT","HASH"}) @DriverParameter(name="mask",type=STRING,description="Mask character",defaultValue="*") @DriverParameter(name="showFirst",type=INTEGER,description="Characters to show at start for PARTIAL",defaultValue="0",min=0L) @DriverParameter(name="showLast",type=INTEGER,description="Characters to show at end for PARTIAL",defaultValue="4",min=0L) public class DataMaskingDriver extends AbstractProxyDriver

DataMaskingDriver masks sensitive data in query results on-the-fly.

URL format: jdbc:mask[param=value,...]:jdbc:target:...

Masking Strategies:

FULL - Replace entire value with mask characters (e.g., "********")
PARTIAL - Show first/last N characters (e.g., "****1234")
EMAIL - Mask email preserving first char and domain (e.g., "j***@example.com")
REDACT - Replace with "[REDACTED]"
HASH - Replace with hash prefix (e.g., "a1b2c3d4...")

Example URLs:

 jdbc:mask[columns=ssn;credit_card]:jdbc:postgresql://localhost/mydb
 jdbc:mask[columns=.*email.*,strategy=EMAIL]:jdbc:postgresql://localhost/mydb
 jdbc:mask[columns=password;secret,strategy=REDACT]:jdbc:postgresql://localhost/mydb
 jdbc:mask[columns=card_number,showLast=4,showFirst=0]:jdbc:mysql://localhost/db

Nested Class Summary

Nested Classes

Modifier and Type

Class

Description

static class

DataMaskingDriver.MaskingConfig

Configuration holder for masking parameters.

static enum

DataMaskingDriver.MaskingStrategy

Masking strategy enumeration.

Driver Parameters

URL format: jdbc:mask[param=value,...]:<target-url>

Parameter	Type	Default	Constraints	Description
`columns`	string	-	-	Semicolon-separated column name patterns (regex) to mask
`strategy`	string	`PARTIAL`	one of: "FULL", "PARTIAL", "EMAIL", "REDACT", "HASH"	Masking strategy
`mask`	string	`*`	-	Mask character
`showFirst`	integer	`0`	≥ 0	Characters to show at start for PARTIAL
`showLast`	integer	`4`	≥ 0	Characters to show at end for PARTIAL

Constructor Summary

Constructors

Constructor

Description

DataMaskingDriver()

Method Summary

Modifier and Type

Method

Description

protected boolean

acceptsSubName(String subname)

protected boolean

acceptsSubProtocol(String subprotocol)

Connection

connect(String url, Properties info)

protected CallableStatement

proxyCallableStatement(CallableStatement delegate, Connection conn)

protected Connection

proxyConnection(Connection delegate, String url, Properties info, Driver driver)

protected PreparedStatement

proxyPreparedStatement(PreparedStatement delegate, Connection conn)

ResultSet

proxyResultSet(Statement stmt, ResultSet delegate)

protected Statement

proxyStatement(Statement delegate, Connection conn)

Methods inherited from class org.pjdbc.sql.AbstractProxyDriver
getPropertyInfo, isCompositionValidationEnabled, isValidateParametersEnabled, proxyCallableStatement, proxyConnection, proxyConnection, proxyPreparedStatement

Methods inherited from class org.pjdbc.sql.AbstractDriver
acceptsProtocol, acceptsURL, getMajorVersion, getMinorVersion, getParentLogger, getUrlParameter, getUrlParameter, getUrlParameters, jdbcCompliant, parseUrl, protocol, subname, subprotocol, validateParameters

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Details
- DataMaskingDriver
  
  public DataMaskingDriver()
Method Details
- acceptsSubProtocol
  
  protected boolean acceptsSubProtocol(String subprotocol)
  
  Specified by:
  
  acceptsSubProtocol in class AbstractDriver
- acceptsSubName
  
  protected boolean acceptsSubName(String subname)
  
  Overrides:
  
  acceptsSubName in class AbstractProxyDriver
- connect
  
  public Connection connect(String url, Properties info) throws SQLException
  
  Specified by:
  
  connect in interface Driver
  
  Overrides:
  
  connect in class AbstractProxyDriver
  
  Throws:
  
  SQLException
- proxyConnection
  
  protected Connection proxyConnection(Connection delegate, String url, Properties info, Driver driver) throws SQLException
  
  Overrides:
  
  proxyConnection in class AbstractProxyDriver
  
  Throws:
  
  SQLException
- proxyStatement
  
  protected Statement proxyStatement(Statement delegate, Connection conn) throws SQLException
  
  Overrides:
  
  proxyStatement in class AbstractProxyDriver
  
  Throws:
  
  SQLException
- proxyPreparedStatement
  
  protected PreparedStatement proxyPreparedStatement(PreparedStatement delegate, Connection conn) throws SQLException
  
  Overrides:
  
  proxyPreparedStatement in class AbstractProxyDriver
  
  Throws:
  
  SQLException
- proxyCallableStatement
  
  protected CallableStatement proxyCallableStatement(CallableStatement delegate, Connection conn) throws SQLException
  
  Overrides:
  
  proxyCallableStatement in class AbstractProxyDriver
  
  Throws:
  
  SQLException
- proxyResultSet
  
  public ResultSet proxyResultSet(Statement stmt, ResultSet delegate) throws SQLException
  
  Overrides:
  
  proxyResultSet in class AbstractProxyDriver
  
  Throws:
  
  SQLException

Class DataMaskingDriver

Nested Class Summary

Driver Parameters

Constructor Summary

Method Summary

Methods inherited from class org.pjdbc.sql.AbstractProxyDriver

Methods inherited from class org.pjdbc.sql.AbstractDriver

Methods inherited from class java.lang.Object

Constructor Details

DataMaskingDriver

Method Details

acceptsSubProtocol

acceptsSubName

connect

proxyConnection

proxyStatement

proxyPreparedStatement

proxyCallableStatement

proxyResultSet