Uploaded image for project: 'JBoss Enterprise Application Platform'
  1. JBoss Enterprise Application Platform
  2. JBEAP-21303

Please Support Credential References and Masking for Keystore and Truststore Passwords when Configuring Netty Acceptors

XMLWordPrintable

    • Icon: Enhancement Enhancement
    • Resolution: Obsolete
    • Icon: Major Major
    • None
    • None
    • A-MQ7, ActiveMQ, Security
    • None
    • False
    • False
    • Undefined

      The netty acceptor configuration does not have provision for a keystore-credential reference similar to those that can be used to configure http acceptors:

                          <key-stores>
                        <key-store name="httpsKS">
                            <credential-reference store="credstore" alias="server-cs"/>
                            <implementation type="JKS"/>
                            <file path="/etc/pki/java/keystore.jks"/>
                        </key-store>
                    </key-stores>

      This enhancement would add support for credential references and masking for the netty acceptor, similar to that used for http acceptors / connectors, allowing for configuration like this:

                          <remote-acceptor name="abctest" socket-binding="abctest">
                        <param name="ssl-enabled" value="true"/>
                        <param name="key-store-path" value="/etc/pki/java/keystore.jks"/>
                        <param name="keystore-password-credential-reference" value="{clear-text=`MASK-{some value}"/>
                    </remote-acceptor>

              Unassigned Unassigned
              rhn-support-dhawkins Duane Hawkins (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: