]
Martin Choma moved JBEAP-7121 to WFLY-7572:
-------------------------------------------
Project: WildFly (was: JBoss Enterprise Application Platform)
Key: WFLY-7572 (was: JBEAP-7121)
Workflow: GIT Pull Request workflow (was: CDW with loose statuses v1)
Component/s: Security
(was: Security)
Affects Version/s: 11.0.0.Alpha1
(was: 7.1.0.DR8)
Elytron expects certificate in PEM format as user input
-------------------------------------------------------
Key: WFLY-7572
URL:
https://issues.jboss.org/browse/WFLY-7572
Project: WildFly
Issue Type: Bug
Components: Security
Affects Versions: 11.0.0.Alpha1
Reporter: Martin Choma
In {{/token-realm/public-key}} attribute there is certificate in PEM format expected,
which I consider to be user un-friendly.
I wonder couldn't that be accomplished by leveraging key-store/trust-manager
capability?
{code}
"public-key" => {
"type" => STRING,
"description" => "A public key in PEM Format. During
validation, if a public key is provided, signature will be verified based on the key you
provided here.",
"expressions-allowed" => false,
"nillable" => true,
"min-length" => 1L,
"max-length" => 2147483647L
}
{code}