Details
-
Component Upgrade
-
Resolution: Duplicate
-
Major
-
None
-
7.12.1.GA
-
None
-
False
-
None
-
False
-
---
-
---
Description
quarkus-file-vault has introduced a new feature to provide encryption for sensitive data such as vault file secret, keystore password, etc.
For example, the following is the vault file configuration. The secret is encrypted using the provided encryption-key:
quarkus:
file:
vault:
provider:
pim:
path: pimvault.p12
secret: DOfVsn952jY3R4yEOZK_jnYddDEJdV753aFzAzpz-E3Vnm8T2BQwmlvk //this is encrypted
encryption-key: ${vault.encryptionkey} //the encryption key is stored in ConfigSource
The following two pull requests implement such new feature:
https://github.com/quarkiverse/quarkus-file-vault/pull/18
https://github.com/quarkiverse/quarkus-file-vault/pull/24
This new feature has introduced since quarkus-file-vault 0.7.0. We need to upgrade to 0.7.0 or newer version.