-
Feature Request
-
Resolution: Done
-
Critical
-
None
-
None
-
False
-
False
-
Documentation (Ref Guide, User Guide, etc.), Release Notes
-
NEW
-
NEW
-
-
2022 Week 08-10 (from Feb 21), 2022 Week 11-13 (from Mar 14)
Request the use of vaults to hide passwords from configuration files as could be done in Thorntail (see RHPAM-4037 ).
Quarkus team is working in an upstream vault that can be used for such scenario. This Jira is to verify if the vault satisfy the use cases described bellow and how we can integrate it with the PIM application.
The issues that should be solved by this implementation is:
- The Oracle DB password is in clear text form in the properties.yaml file
- The keystore passwords of command line are in clear text form when invoking PIM in certificate authentication mode
- In development environment where basic authentication is preferred the password of the user in user is in clear text form
- In development environment where basic authentication is preferred the kie-server user’s password is in clear text form
The scope of this Jira is to see if works to solve the use cases above.