Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-21303

Please Support Credential References and Masking for Keystore and Truststore Passwords when Configuring Netty Acceptors

    XMLWordPrintable

Details

    • Enhancement
    • Resolution: Obsolete
    • Major
    • None
    • None
    • A-MQ7, ActiveMQ, Security
    • None
    • False
    • False
    • Undefined

    Description

      The netty acceptor configuration does not have provision for a keystore-credential reference similar to those that can be used to configure http acceptors:

                          <key-stores>
                        <key-store name="httpsKS">
                            <credential-reference store="credstore" alias="server-cs"/>
                            <implementation type="JKS"/>
                            <file path="/etc/pki/java/keystore.jks"/>
                        </key-store>
                    </key-stores>

      This enhancement would add support for credential references and masking for the netty acceptor, similar to that used for http acceptors / connectors, allowing for configuration like this:

                          <remote-acceptor name="abctest" socket-binding="abctest">
                        <param name="ssl-enabled" value="true"/>
                        <param name="key-store-path" value="/etc/pki/java/keystore.jks"/>
                        <param name="keystore-password-credential-reference" value="{clear-text=`MASK-{some value}"/>
                    </remote-acceptor>

      Attachments

        Activity

          People

            Unassigned Unassigned
            rhn-support-dhawkins Duane Hawkins
            Votes:
            0 Vote for this issue
            Watchers:
            4 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: