[jboss-jira] [JBoss JIRA] (ELY-402) A wrapper KeyStore that can filter by alias
Darran Lofthouse (JIRA)
issues at jboss.org
Thu Jan 7 11:49:00 EST 2016
Darran Lofthouse created ELY-402:
------------------------------------
Summary: A wrapper KeyStore that can filter by alias
Key: ELY-402
URL: https://issues.jboss.org/browse/ELY-402
Project: WildFly Elytron
Issue Type: Feature Request
Components: SSL
Reporter: Darran Lofthouse
Fix For: 1.1.0.Beta4
A common request is that when a server is configured for SSL the alias to use from the KeyStore can be specified - this can be a little short sighted as a huge advantage of multiple entries in a single KeyStore is that different entries can be used depending on the selected cipher suite.
A better option may be to add alias filtering so a wrapper KeyStore can still make a number of underlying entries available.
Alias filtering is better handled at the KeyStore level as the KeyManager should be performing additional checks to ensure the keys and signatures are compatible with the current cipher suite.
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list