[jboss-cvs] Picketbox SVN: r246 - trunk/security-jboss-sx/jbosssx/src/main/java/org/picketbox/plugins/vault.

jboss-cvs-commits at lists.jboss.org jboss-cvs-commits at lists.jboss.org
Mon Aug 15 19:12:49 EDT 2011 

Author: anil.saldhana at jboss.com
Date: 2011-08-15 19:12:49 -0400 (Mon, 15 Aug 2011)
New Revision: 246

Modified:
   trunk/security-jboss-sx/jbosssx/src/main/java/org/picketbox/plugins/vault/PicketBoxSecurityVault.java
Log:
SECURITY-615: vault to hold attribute values

Modified: trunk/security-jboss-sx/jbosssx/src/main/java/org/picketbox/plugins/vault/PicketBoxSecurityVault.java
===================================================================
--- trunk/security-jboss-sx/jbosssx/src/main/java/org/picketbox/plugins/vault/PicketBoxSecurityVault.java	2011-08-15 23:05:57 UTC (rev 245)
+++ trunk/security-jboss-sx/jbosssx/src/main/java/org/picketbox/plugins/vault/PicketBoxSecurityVault.java	2011-08-15 23:12:49 UTC (rev 246)
@@ -56,8 +56,19 @@
 
 /**
  * An instance of {@link SecurityVault} that uses
- * a {@link KeyStore} and the package of the calling class to determine
- * the shared key
+ * a {@link KeyStore} 
+ * The shared key just uses a concatenation of a {@link java.uti.UUID}
+ * and a keystore alias.
+ * 
+ * The following options are expected in the {@link SecurityVault#init(Map)} call:
+ * ENC_FILE_DIR: the location where the encoded files will be kept. End with "/" or "\" based on your platform
+ * KEYSTORE_URL: location where your keystore is located
+ * KEYSTORE_PASSWORD: Masked keystore password.  Has to be prepended with MASK-
+ * KEYSTORE_ALIAS: Alias where the keypair is located
+ * SALT: salt of the masked password. Ensured it is 8 characters in length
+ * ITERATION_COUNT: Iteration Count of the masked password.
+ * KEY_SIZE: Key size of encryption. Default is 128 bytes.
+ * 
  * @author Anil.Saldhana at redhat.com
  * @since Aug 12, 2011
  */
@@ -216,7 +227,7 @@
       
       String publicCert = (String) handshakeOptions.get(PUBLIC_CERT);
       if(publicCert == null)
-         throw new SecurityVaultException("Public Cert is null");
+         throw new SecurityVaultException("Public Cert Alias is null");
       
       try
       {

More information about the jboss-cvs-commits mailing list