]
Darran Lofthouse reassigned ELY-402:
------------------------------------
Assignee: Darran Lofthouse
A wrapper KeyStore that can filter by alias
-------------------------------------------
Key: ELY-402
URL:
https://issues.jboss.org/browse/ELY-402
Project: WildFly Elytron
Issue Type: Feature Request
Components: SSL
Reporter: Darran Lofthouse
Assignee: Darran Lofthouse
Fix For: 1.1.0.Beta4
A common request is that when a server is configured for SSL the alias to use from the
KeyStore can be specified - this can be a little short sighted as a huge advantage of
multiple entries in a single KeyStore is that different entries can be used depending on
the selected cipher suite.
A better option may be to add alias filtering so a wrapper KeyStore can still make a
number of underlying entries available.
Alias filtering is better handled at the KeyStore level as the KeyManager should be
performing additional checks to ensure the keys and signatures are compatible with the
current cipher suite.