[jboss-jira] [JBoss JIRA] (AS7-3419) JBossWeb::ssl element in connector settings should check for vaultified strings
Brian Stansberry (JIRA)
jira-events at lists.jboss.org
Mon Jan 30 13:21:51 EST 2012
[ https://issues.jboss.org/browse/AS7-3419?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Brian Stansberry reassigned AS7-3419:
-------------------------------------
Assignee: Tomaz Cerar (was: Brian Stansberry)
Tomaz, could you look at this? Basically this means providing proper expression support for this attribute.
This subsystem isn't using AttributeDefinition. For 7.1.0 I absolutely don't want to try and change it to that (too late). If changing this one element to use AttributeDefinition is the efficient way to fix this, it's ok by me. It will look a bit odd having just one AttributeDefinition, but c'est la vie. AttributeDefinition isn't required for proper expression support though; it just has most of the code already there.
> JBossWeb::ssl element in connector settings should check for vaultified strings
> -------------------------------------------------------------------------------
>
> Key: AS7-3419
> URL: https://issues.jboss.org/browse/AS7-3419
> Project: Application Server 7
> Issue Type: Feature Request
> Components: Web
> Affects Versions: 7.1.0.CR1
> Reporter: Anil Saldhana
> Assignee: Tomaz Cerar
> Fix For: 7.1.0.Final
>
>
> Currently, the passwords in the ssl element of the connector settings are in clear text.
> https://community.jboss.org/wiki/JBossAS7SecuringPasswords describes very simple ways of checking whether a string is of the vault format and invoking the vault to get the decrypted string value.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.jboss.org/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
More information about the jboss-jira
mailing list