Re: [keycloak-dev] Private Key encryption
Absolutely :)
This is something we've been discussing and we aim to add it, but it'll be after
1.0.final is released.
----- Original Message -----
From: "Alarik Myrin" <alarik(a)zwift.com>
To: keycloak-dev(a)lists.jboss.org
Sent: Wednesday, 27 August, 2014 3:08:42 AM
Subject: Re: [keycloak-dev] Private Key encryption
...sorry, and by "private key" I mean the realm private key.
On Tue, Aug 26, 2014 at 8:52 PM, Alarik Myrin < alarik(a)zwift.com > wrote:
Does anyone think it would be a good idea to store the private key encrypted?
This would require a separate secret, presumably stored in a configuration
file, or using the PicketLink Vault Tool, to decrypt the private key for
use. Anyone who can get the private key can start issuing access tokens to
whatever resources they want.
_______________________________________________
keycloak-dev mailing list
keycloak-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/keycloak-dev