Uploaded image for project: 'JBoss Web Server'
  1. JBoss Web Server
  2. JWS-216

Tomcat vault non-interactively isn`t storing correct password

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Critical Critical
    • JWS 3.0.2 GA
    • JWS 3.0.1 CR2
    • None
    • None
    • Hide

      Store password non-interactive way, then try to log in. Password u stored wont work at this point, but you can still log in when you use attribute name( in this example manager_password2) as password.

      Show
      Store password non-interactive way, then try to log in. Password u stored wont work at this point, but you can still log in when you use attribute name( in this example manager_password2) as password.

      non-interactive password storing should look like

      vault.sh --keystore KEYSTORE_URL --keystore-password KEYSTORE_PASSWORD --alias KEYSTORE_ALIAS --vault-block VAULT_BLOCK --attribute ATTRIBUTE --sec-attr SEC-ATTR --enc-dir ENC_FILE_DIR --iteration ITERATION_COUNT --salt SALT

      tomcat-vault.sh --attribute manager_password2 --sec-attr password1234 --keystore JWS_HOME/conf/vault.keystore --keystore-password vault22 --alias vault --enc-dir JWS_HOME/conf/ --iteration 20 --salt 12345678 --vault-block vb

      After that command there is stored manager_password2 in vault, but with secured atribute manager_password2, concluded from fact that it is possible to log in to secure page with "manager_password2" as password.

        1. vault-tomcat-1.0.5.Final-jar-with-dependencies.jar
          583 kB

              rhn-engineering-jclere Jean-Frederic Clere
              bsikora Bogdan Sikora (Inactive)
              Bogdan Sikora Bogdan Sikora (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              4 Start watching this issue

                Created:
                Updated:
                Resolved: