[jboss-jira] [JBoss JIRA] (ELY-118) Reloadable File-backed KeyStore
Darran Lofthouse (JIRA)
issues at jboss.org
Fri Mar 20 09:14:19 EDT 2015
[ https://issues.jboss.org/browse/ELY-118?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13052177#comment-13052177 ]
Darran Lofthouse commented on ELY-118:
--------------------------------------
Deferring for the moment, may make more sense to be the responsibility of the subsystem to track this as it needs to be coordinated with the other management requests currently happening - also there is the issue of possible race conditions where the file is modified and also the runtime state is modified so will wait until we really have a better idea once all the management operations are in place.
> Reloadable File-backed KeyStore
> -------------------------------
>
> Key: ELY-118
> URL: https://issues.jboss.org/browse/ELY-118
> Project: WildFly Elytron
> Issue Type: Enhancement
> Components: KeyStores
> Reporter: David Lloyd
> Assignee: Darran Lofthouse
> Fix For: 1.0.0.Beta1
>
>
> File-backed keystores can generically be made reloadable. This can be done by creating a KeyStore wrapper which contains an {{AtomicReference<KeyStore>}}. The wrapper also has a file name reference, and will initialize itself from that file. It would use an NIO.2 file watcher to monitor the file for changes; when the file is changed, the watcher attempts to re-load the file into a new KeyStore instance (using cached protection parameters). If successful, the new KeyStore replaces the old one atomically, providing atomic and clean real-time update capability.
--
This message was sent by Atlassian JIRA
(v6.3.11#6341)
More information about the jboss-jira
mailing list