Skip to content
Browser Tool · Free · No Signup

Secure Properties Tool

Encrypt and decrypt MuleSoft secure properties directly in your browser. Generate production-ready encrypted values for your Mule application properties files without installing anything.

⚡ Client-side only 🔒 Keys never leave your browser 🛡️ AES, Blowfish, DES, 3DES ✓ Mule 4 compatible
100%
Client-side
0
Data sent to server
Free
Forever

What are Secure Properties?

MuleSoft Secure Properties (formerly Secure Configuration Properties) allow you to store sensitive configuration values — database passwords, API keys, certificates — in encrypted form inside your Mule application's properties files. At runtime, the Mule Runtime decrypts them using a key you provide via a system property, keeping secrets out of your source code.

This tool replicates the encryption logic of the official MuleSoft Secure Properties Tool entirely in JavaScript, so you can encrypt values and generate ready-to-paste ![encrypted-value] strings without leaving your browser — and without the Java installation the official CLI requires.

🔐
Encrypt secrets Database passwords, API keys
🔓
Decrypt to verify Confirm encryption is correct
📋
Copy-paste ready Output in ![value] format
⚙️
Multiple algorithms AES, Blowfish, DES, 3DES

Encrypt / Decrypt

Secure Properties Generator

Encrypt and decrypt MuleSoft configuration properties. All operations run locally in your browser — nothing is sent to any server.


Operation
Algorithm
Mode


Encryption Key


Value to Encrypt

Result
Output will appear here…

i

AES-CBC — the default MuleSoft algorithm. Key is padded or truncated to 16 bytes. Output is Base64-encoded, compatible with the secure-properties module.

How to use in MuleSoft

Step 1
Encrypt your value
Enter your secret key and the plaintext value, then click Generate.

Step 2
Use in YAML config
Wrap the result: ![ENC~result] inside your config.yaml.

Step 3
Configure the module
Set the key in secure-properties:config in your Mule app XML.

Step 4
Deploy and run
MuleSoft auto-decrypts values at runtime using the provided key.

How to Use in Your Mule App

01
Choose algorithm and enter your key

Select your encryption algorithm (AES recommended for Mule 4). Enter the same key you'll pass to the Mule runtime via -Dsecure.key=yourkey.

02
Encrypt your secret value

Paste the plaintext value (password, API key, etc.) and click Encrypt. Copy the ![encrypted-value] output.

03
Paste into your properties file

In your config.yaml or .properties file, use the encrypted value: db.password: "![AbCdEf...]". Add the Secure Properties Config element in your Mule XML.

04
Pass the key at runtime

When deploying to CloudHub or Runtime Manager, add secure.key as an encrypted application property. Never commit the key to source control.

Related MuleSoft Guides

All MuleSoft →
Chapter 3 cover image – Mule Fundamentals: Flows, Events, DataWeave and Error Handling
MuleSoft
· 18 min read
MuleSoft Mastery: From Zero to Hero | Ch.03
requestId 🔀 Choice Router ⚡ Transform DataWeave ✅ HTTP Response 200 OK Mule Event flows through every component: payload · attributes · vars · #[expressions] 🧠 The engine under…
Read →
MuleSoft
· 15 min read
MuleSoft Mastery: From Zero to Hero | Ch.02
6 LTS HTTP Connector 1.10 · DB Connector 1.14 MuleSoft from Zero to Hero · nestaconnect.com In Chapter 1, we got our feet wet with a "Hello World" API and…
Read →
MuleSoft
· 12 min read
MuleSoft Mastery: From Zero to Hero | Ch.01
mulesoft.com · blogs.mulesoft.com MuleSoft from Zero to Hero · nestaconnect.com · February 2026 Welcome to the first chapter of MuleSoft from Zero to Hero! By the end of this series you'll…
Read →