[jboss-jira] [JBoss JIRA] (AS7-3419) JBossWeb::ssl element in connector settings should check for vaultified strings
Tomaz Cerar (JIRA)
jira-events at lists.jboss.org
Thu Feb 2 13:54:48 EST 2012
[ https://issues.jboss.org/browse/AS7-3419?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=12663852#comment-12663852 ]
Tomaz Cerar commented on AS7-3419:
----------------------------------
What does not work? I have tested it and it work properly...
i have tested with this configuration and all expressions resolved properly:
{code:xml}
<connector name="https" protocol="HTTP/1.1" scheme="https" socket-binding="https" secure="true">
<ssl name="ssl.name" key-alias="alias" password="${ssl.keystore.password:defaultPassword}" certificate-key-file="${jboss.server.config.dir}/keystore.p12" verify-client="true" ca-certificate-file="${jboss.server.config.dir}/megapos.jks" ca-certificate-password="${my.custom.sysprop:password}" keystore-type="PKCS12" truststore-type="JKS"/>
</connector>
{code}
I didn't test with vault expression but other then that all expressions resolved properly
> JBossWeb::ssl element in connector settings should check for vaultified strings
> -------------------------------------------------------------------------------
>
> Key: AS7-3419
> URL: https://issues.jboss.org/browse/AS7-3419
> Project: Application Server 7
> Issue Type: Feature Request
> Components: Web
> Affects Versions: 7.1.0.CR1
> Reporter: Anil Saldhana
> Assignee: Tomaz Cerar
> Fix For: 7.1.0.Final
>
>
> Currently, the passwords in the ssl element of the connector settings are in clear text.
> https://community.jboss.org/wiki/JBossAS7SecuringPasswords describes very simple ways of checking whether a string is of the vault format and invoking the vault to get the decrypted string value.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list