12:51 p.m.
Good morning, I would like to know if Vaults from PicketBox are specific
for datasources or any kind of sensitive data. I would like to store a
key material, used for encryption and not sure if this is the correct
configuration for it:
- standalone.xml
<system-properties>
<property name="key-material"
value="${VAULT::ds_SecurityVaultDS::password::2DyuLAae8wP.pSsrT/gGhn}"/>
</system-properties>
<vault>
<vault-option name="KEYSTORE_URL"
value="/servers/wildfly-current/vault/vault.keystore"/>
<vault-option name="KEYSTORE_PASSWORD"
value="MASK-2DyuLAae8wP.pSsrT/gGhn"/>
<vault-option name="KEYSTORE_ALIAS" value="vault"/>
<vault-option name="SALT" value="2bzeScxo"/>
<vault-option name="ITERATION_COUNT" value="16"/>
<vault-option name="ENC_FILE_DIR"
value="/servers/wildfly-current/vault/"/>
</vault>
This is the stack trace when Wildfly is initialized:
https://gist.github.com/abstractj/4542c7cf1aa8a36ebad9. I would
appreciate any pointers to the documentation.
--
abstractj
1:43 p.m.
The system properties functionality in WildFly may not be ready to take vault expressions.
I remember seeing a JIRA issue for that. Could you take a look at the WFLY JIRA (as I am
at an airport and will take time to dig the issue)?
Vault can be used for any sensitive data.
On Apr 14, 2014, at 12:51 PM, Bruno Oliveira
<bruno(a)abstractj.org> wrote:
Good morning, I would like to know if Vaults from PicketBox are specific
for datasources or any kind of sensitive data. I would like to store a
key material, used for encryption and not sure if this is the correct
configuration for it:
- standalone.xml
<system-properties>
<property name="key-material"
value="${VAULT::ds_SecurityVaultDS::password::2DyuLAae8wP.pSsrT/gGhn}"/>
</system-properties>
<vault>
<vault-option name="KEYSTORE_URL"
value="/servers/wildfly-current/vault/vault.keystore"/>
<vault-option name="KEYSTORE_PASSWORD"
value="MASK-2DyuLAae8wP.pSsrT/gGhn"/>
<vault-option name="KEYSTORE_ALIAS" value="vault"/>
<vault-option name="SALT" value="2bzeScxo"/>
<vault-option name="ITERATION_COUNT" value="16"/>
<vault-option name="ENC_FILE_DIR"
value="/servers/wildfly-current/vault/"/>
</vault>
This is the stack trace when Wildfly is initialized:
https://gist.github.com/abstractj/4542c7cf1aa8a36ebad9. I would
appreciate any pointers to the documentation.
--
abstractj
_______________________________________________
security-dev mailing list
security-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/security-dev
2:52 p.m.
Sure, np. Thank you Anil
On Mon, Apr 14, 2014 at 3:43 PM, Anil Saldhana <asaldhan(a)redhat.com> wrote:
The system properties functionality in WildFly may not be ready to
take
vault expressions. I remember seeing a JIRA issue for that. Could you take
a look at the WFLY JIRA (as I am at an airport and will take time to dig
the issue)?
Vault can be used for any sensitive data.
> On Apr 14, 2014, at 12:51 PM, Bruno Oliveira <bruno(a)abstractj.org>
wrote:
>
> Good morning, I would like to know if Vaults from PicketBox are specific
> for datasources or any kind of sensitive data. I would like to store a
> key material, used for encryption and not sure if this is the correct
> configuration for it:
>
> - standalone.xml
>
> <system-properties>
> <property name="key-material"
>
value="${VAULT::ds_SecurityVaultDS::password::2DyuLAae8wP.pSsrT/gGhn}"/>
> </system-properties>
>
>
> <vault>
> <vault-option name="KEYSTORE_URL"
> value="/servers/wildfly-current/vault/vault.keystore"/>
> <vault-option name="KEYSTORE_PASSWORD"
> value="MASK-2DyuLAae8wP.pSsrT/gGhn"/>
> <vault-option name="KEYSTORE_ALIAS"
value="vault"/>
> <vault-option name="SALT" value="2bzeScxo"/>
> <vault-option name="ITERATION_COUNT" value="16"/>
> <vault-option name="ENC_FILE_DIR"
> value="/servers/wildfly-current/vault/"/>
> </vault>
>
> This is the stack trace when Wildfly is initialized:
> https://gist.github.com/abstractj/4542c7cf1aa8a36ebad9. I would
> appreciate any pointers to the documentation.
>
> --
> abstractj
>
>
> _______________________________________________
> security-dev mailing list
> security-dev(a)lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/security-dev
--
--
"The measure of a man is what he does with power" - Plato
-
@abstractj
-
Volenti Nihil Difficile
3:15 p.m.
I believe this is the jira Anil is talking about
https://issues.jboss.org/browse/WFLY-1904 - its been fixed for WF
8.0.0.CR1.
On 04/14/2014 03:43 PM, Anil Saldhana wrote:
The system properties functionality in WildFly may not be ready to
take vault expressions. I remember seeing a JIRA issue for that. Could you take a look at
the WFLY JIRA (as I am at an airport and will take time to dig the issue)?
Vault can be used for any sensitive data.
> On Apr 14, 2014, at 12:51 PM, Bruno Oliveira <bruno(a)abstractj.org> wrote:
>
> Good morning, I would like to know if Vaults from PicketBox are specific
> for datasources or any kind of sensitive data. I would like to store a
> key material, used for encryption and not sure if this is the correct
> configuration for it:
>
> - standalone.xml
>
> <system-properties>
> <property name="key-material"
>
value="${VAULT::ds_SecurityVaultDS::password::2DyuLAae8wP.pSsrT/gGhn}"/>
> </system-properties>
>
>
> <vault>
> <vault-option name="KEYSTORE_URL"
> value="/servers/wildfly-current/vault/vault.keystore"/>
> <vault-option name="KEYSTORE_PASSWORD"
> value="MASK-2DyuLAae8wP.pSsrT/gGhn"/>
> <vault-option name="KEYSTORE_ALIAS"
value="vault"/>
> <vault-option name="SALT" value="2bzeScxo"/>
> <vault-option name="ITERATION_COUNT" value="16"/>
> <vault-option name="ENC_FILE_DIR"
> value="/servers/wildfly-current/vault/"/>
> </vault>
>
> This is the stack trace when Wildfly is initialized:
> https://gist.github.com/abstractj/4542c7cf1aa8a36ebad9. I would
> appreciate any pointers to the documentation.
>
> --
> abstractj
>
>
> _______________________________________________
> security-dev mailing list
> security-dev(a)lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/security-dev
_______________________________________________
security-dev mailing list
security-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/security-dev
11:42 p.m.
Thank you Stefan
Stefan Guilhen <mailto:sguilhen@redhat.com>
April 14, 2014 at 5:15 PM
I believe this is the jira Anil is talking about
https://issues.jboss.org/browse/WFLY-1904 - its been fixed for WF
8.0.0.CR1.
_______________________________________________
security-dev mailing list
security-dev(a)lists.jboss.org
https://lists.jboss.org/mailman/listinfo/security-dev
--
abstractj
3885
days inactive
3887
days old
4 comments
3 participants
participants (3)
-
Anil Saldhana -
Bruno Oliveira -
Stefan Guilhen