[JBoss JIRA] (GTNPORTAL-2175) The default OAuth signing key should NOT be automatically generated if it does not exist
11:18 p.m.
The default OAuth signing key should NOT be automatically generated if it does not exist
----------------------------------------------------------------------------------------
Key: GTNPORTAL-2175
URL: https://issues.jboss.org/browse/GTNPORTAL-2175
Project: GateIn Portal
Issue Type: Bug
Security Level: Public (Everyone can see)
Environment:
Reporter: Trong Tran
Fix For: 3.2.0-M02
Today the oauthkey.pem is generated automatically if it does not exist. The file contains
RSA based private key for signing request of OAuth authentication.
This is not a reasonable behaviour to OAuth signing request authentication. A pair
public/private key should be pre-defined for use properly
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
11:18 p.m.
[
https://issues.jboss.org/browse/GTNPORTAL-2175?page=com.atlassian.jira.pl...
]
Trong Tran updated GTNPORTAL-2175:
----------------------------------
Labels: synced (was: )
The default OAuth signing key should NOT be automatically generated
if it does not exist
----------------------------------------------------------------------------------------
Key: GTNPORTAL-2175
URL: https://issues.jboss.org/browse/GTNPORTAL-2175
Project: GateIn Portal
Issue Type: Bug
Security Level: Public(Everyone can see)
Environment:
Reporter: Trong Tran
Labels: synced
Fix For: 3.2.0-M02
Today the oauthkey.pem is generated automatically if it does not exist. The file contains
RSA based private key for signing request of OAuth authentication.
This is not a reasonable behaviour to OAuth signing request authentication. A pair
public/private key should be pre-defined for use properly
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
3:32 a.m.
[
https://issues.jboss.org/browse/GTNPORTAL-2175?page=com.atlassian.jira.pl...
]
Trong Tran resolved GTNPORTAL-2175.
-----------------------------------
Assignee: Trong Tran
Resolution: Done
The default OAuth signing key should NOT be automatically generated
if it does not exist
----------------------------------------------------------------------------------------
Key: GTNPORTAL-2175
URL: https://issues.jboss.org/browse/GTNPORTAL-2175
Project: GateIn Portal
Issue Type: Bug
Security Level: Public(Everyone can see)
Environment:
Reporter: Trong Tran
Assignee: Trong Tran
Labels: synced
Fix For: 3.2.0-M02
Today the oauthkey.pem is generated automatically if it does not exist. The file contains
RSA based private key for signing request of OAuth authentication.
This is not a reasonable behaviour to OAuth signing request authentication. A pair
public/private key should be pre-defined for use properly
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
5288
days inactive
5302
days old
2 comments
3 participants
participants (3)
-
Trong Tran (Created) (JIRA) -
Trong Tran (Resolved) (JIRA)
-
Trong Tran (Updated) (JIRA)