[jboss-jira] [JBoss JIRA] (AS7-3419) JBossWeb::ssl element in connector settings should check for vaultified strings
[
https://issues.jboss.org/browse/AS7-3419?page=com.atlassian.jira.plugin.s...
]
Brian Stansberry reassigned AS7-3419:
-------------------------------------
Assignee: Tomaz Cerar (was: Brian Stansberry)
Tomaz, could you look at this? Basically this means providing proper expression support
for this attribute.
This subsystem isn't using AttributeDefinition. For 7.1.0 I absolutely don't want
to try and change it to that (too late). If changing this one element to use
AttributeDefinition is the efficient way to fix this, it's ok by me. It will look a
bit odd having just one AttributeDefinition, but c'est la vie. AttributeDefinition
isn't required for proper expression support though; it just has most of the code
already there.
JBossWeb::ssl element in connector settings should check for
vaultified strings
-------------------------------------------------------------------------------
Key: AS7-3419
URL: https://issues.jboss.org/browse/AS7-3419
Project: Application Server 7
Issue Type: Feature Request
Components: Web
Affects Versions: 7.1.0.CR1
Reporter: Anil Saldhana
Assignee: Tomaz Cerar
Fix For: 7.1.0.Final
Currently, the passwords in the ssl element of the connector settings are in clear text.
https://community.jboss.org/wiki/JBossAS7SecuringPasswords describes very simple ways
of checking whether a string is of the vault format and invoking the vault to get the
decrypted string value.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators:
https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira