Uploaded image for project: 'JBoss Enterprise Application Platform 4 and 5'
  1. JBoss Enterprise Application Platform 4 and 5
  2. JBPAPP-5882

Document - Add options to retrieve keys and certificates from JaasSecurityDomain

XMLWordPrintable

    • Documentation (Ref Guide, User Guide, etc.)
    • Medium
    • Hide
      Exposing the keystore or truststore password in JaasSecurityDomain is insecure. Two methods have been added to retrieve private keys and certificates directly from the JSD, so that they can be used by external components. These methods are <code>getKey</code> and <code>getCertificate</code>. The <code>getKey</code> method requires you to provide a security token.
      Show
      Exposing the keystore or truststore password in JaasSecurityDomain is insecure. Two methods have been added to retrieve private keys and certificates directly from the JSD, so that they can be used by external components. These methods are <code>getKey</code> and <code>getCertificate</code>. The <code>getKey</code> method requires you to provide a security token.
    • Documented as Resolved Issue
    • ASSIGNED

      Since we don't want to expose the keystore/truststore password in JaasSecurityDomain we need to add options to retrieve private keys and certificates directly from the JSD so they can be used by external components.

              ekopalov_jira Eva Kopalova (Inactive)
              mmoyses Marcus Moyses (Inactive)
              Eva Kopalova Eva Kopalova (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: