Currently the httpRequest configuration stores any form-based authentication credentials in plain text. Add support for encryption of j_password field to hide the password for users not authorized for the web application being accessed.