[jboss-jira] [JBoss JIRA] (WFLY-6836) Vault.sh misleading output
Martin Choma (JIRA)
issues at jboss.org
Fri Jul 15 07:49:00 EDT 2016
Martin Choma created WFLY-6836:
----------------------------------
Summary: Vault.sh misleading output
Key: WFLY-6836
URL: https://issues.jboss.org/browse/WFLY-6836
Project: WildFly
Issue Type: Bug
Components: Security
Reporter: Martin Choma
Assignee: Darran Lofthouse
Priority: Minor
Vault.sh advise to insert vault xml snippet as follows:
{code}
Vault Configuration in AS7 config file:
********************************************
...
</extensions>
<vault>
<vault-option name="KEYSTORE_URL" value="EAP_HOME/vault/vault.keystore"/>
<vault-option name="KEYSTORE_PASSWORD" value="MASK-5dOaAVafCSd"/>
<vault-option name="KEYSTORE_ALIAS" value="vault"/>
<vault-option name="SALT" value="1234abcd"/>
<vault-option name="ITERATION_COUNT" value="120"/>
<vault-option name="ENC_FILE_DIR" value="EAP_HOME/vault/"/>
</vault><management> ...
********************************************
{code}
1. User can insert this snippet on wrong place. See forum link for example. Pobably CLI command would be more suitable?
{code}
/core-service=vault:add(vault-options=[("KEYSTORE_URL" => "PATH_TO_KEYSTORE"),("KEYSTORE_PASSWORD" => "MASKED_PASSWORD"),("KEYSTORE_ALIAS" => "ALIAS"),("SALT" => "SALT"),("ITERATION_COUNT" => "ITERATION_COUNT"),("ENC_FILE_DIR" => "ENC_FILE_DIR")])
{code}
2. There is still reference to AS7
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list