[teiid-issues] [JBoss JIRA] Updated: (TEIID-874) Wiki documentation on SSL Encryption is misleading

Ramesh Reddy (JIRA) jira-events at lists.jboss.org
Wed Oct 21 17:05:05 EDT 2009 

     [ https://jira.jboss.org/jira/browse/TEIID-874?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Ramesh Reddy updated TEIID-874:
-------------------------------

            Fix Version/s: 6.3
    JBoss Forum Reference: http://www.jboss.org/index.html?module=bb&op=viewtopic&p=4261581#4261581
                  Affects: [Documentation (Ref Guide, User Guide, etc.)]
                 Assignee:     (was: Steven Hawkins)
               Complexity: Low


The issue may be couple things here.

1) SSLConfiguration always decrypting the passwords. It needs to check if they are encrypted or not 
2) Test and make sure if passwords are required or not. If optional, the code needs to re-factored for that. else fix the documentation.

Work around for this to supply the encrypted passwords for SSL.

> Wiki documentation on SSL Encryption is misleading
> --------------------------------------------------
>
>                 Key: TEIID-874
>                 URL: https://jira.jboss.org/jira/browse/TEIID-874
>             Project: Teiid
>          Issue Type: Quality Risk
>          Components: Server
>    Affects Versions: 6.2.0
>         Environment: N/A
>            Reporter: Nestor D. Rodriguez
>            Priority: Minor
>             Fix For: 6.3
>
>
> The wiki page describing how to implement SSL in Teiid (https://www.jboss.org/community/wiki/secureclientconnectionsusingsslinteiid) implies that the keystore and trustore password properties (ssl.keystore.Password and ssl.truststore.Password) can be entered in cleartext.
> The code, on the other hand, requires them to be encrypted, using the strategy described in http://www.jboss.org/community/wiki/EncryptingpasswordsinTeiid
> The documentation needs to be modified to reflect that.

-- 
This message is automatically generated by JIRA.
-
If you think it was sent incorrectly contact one of the administrators: https://jira.jboss.org/jira/secure/Administrators.jspa
-
For more information on JIRA, see: http://www.atlassian.com/software/jira

More information about the teiid-issues mailing list