[jboss-jira] [JBoss JIRA] (ELY-402) A wrapper KeyStore that can filter by alias
Darran Lofthouse (JIRA)
issues at jboss.org
Wed Feb 3 05:29:00 EST 2016
[ https://issues.jboss.org/browse/ELY-402?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Darran Lofthouse reassigned ELY-402:
------------------------------------
Assignee: Darran Lofthouse
> A wrapper KeyStore that can filter by alias
> -------------------------------------------
>
> Key: ELY-402
> URL: https://issues.jboss.org/browse/ELY-402
> Project: WildFly Elytron
> Issue Type: Feature Request
> Components: SSL
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Fix For: 1.1.0.Beta4
>
>
> A common request is that when a server is configured for SSL the alias to use from the KeyStore can be specified - this can be a little short sighted as a huge advantage of multiple entries in a single KeyStore is that different entries can be used depending on the selected cipher suite.
> A better option may be to add alias filtering so a wrapper KeyStore can still make a number of underlying entries available.
> Alias filtering is better handled at the KeyStore level as the KeyManager should be performing additional checks to ensure the keys and signatures are compatible with the current cipher suite.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list