[jbossws-issues] [JBoss JIRA] Commented: (JBWS-1594) Support certificate password different from keystore
Peter Johnson (JIRA)
jira-events at lists.jboss.org
Thu Jun 14 19:01:11 EDT 2007
[ http://jira.jboss.com/jira/browse/JBWS-1594?page=comments#action_12365459 ]
Peter Johnson commented on JBWS-1594:
-------------------------------------
Thanks, Thomas. I will get the source, give it a spin, and let you know, hopefully within the next few days (warning: I am really swamped right now, so it might be quite a few days).
> Support certificate password different from keystore
> ----------------------------------------------------
>
> Key: JBWS-1594
> URL: http://jira.jboss.com/jira/browse/JBWS-1594
> Project: JBoss Web Services
> Issue Type: Bug
> Security Level: Public(Everyone can see)
> Components: ws-security
> Affects Versions: jbossws-2.0.0.Beta, jbossws-1.2.0, jbossws-1.2.0.SP1, jbossws-2.0.0.CR5
> Reporter: Peter Johnson
> Assigned To: Thomas Diesler
> Priority: Critical
> Fix For: jbossws-2.0.0
>
> Attachments: patch.txt
>
>
> If I generate a certificate and use a different password for it than what I used for the keystore, then I get a key not found error on the server when an ecnrypted SOAP message is sent. The problem appears to be in the SecurityStore.getPrivateKey method, this line:
> key = (PrivateKey)keyStore.getKey(alias, decryptPassword(keyStorePassword).toCharArray());
> which assumes that the keystore password is also associated with the certificate.
> I also checked jboss-ws-security_1_0.xsd to see if there was a way to provide a password along with the alias in the tag, but there was none.
--
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: http://jira.jboss.com/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jbossws-issues
mailing list