[jboss-jira] [JBoss JIRA] (WFLY-6835) Vault.sh misleading output
Brian Stansberry (JIRA)
issues at jboss.org
Fri Jul 15 11:58:00 EDT 2016
[ https://issues.jboss.org/browse/WFLY-6835?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13266396#comment-13266396 ]
Brian Stansberry commented on WFLY-6835:
----------------------------------------
If we go for CLI commands, there should be two examples, one for a standalone server, one for a host controller. Difference is a preceding /host=the_host in the command address.
> Vault.sh misleading output
> --------------------------
>
> Key: WFLY-6835
> URL: https://issues.jboss.org/browse/WFLY-6835
> Project: WildFly
> Issue Type: Bug
> Components: Security
> Reporter: Martin Choma
> Assignee: Darran Lofthouse
> Priority: Minor
>
> Vault.sh advise to insert vault xml snippet as follows:
> {code}
> Vault Configuration in AS7 config file:
> ********************************************
> ...
> </extensions>
> <vault>
> <vault-option name="KEYSTORE_URL" value="EAP_HOME/vault/vault.keystore"/>
> <vault-option name="KEYSTORE_PASSWORD" value="MASK-5dOaAVafCSd"/>
> <vault-option name="KEYSTORE_ALIAS" value="vault"/>
> <vault-option name="SALT" value="1234abcd"/>
> <vault-option name="ITERATION_COUNT" value="120"/>
> <vault-option name="ENC_FILE_DIR" value="EAP_HOME/vault/"/>
> </vault><management> ...
> ********************************************
> {code}
> 1. User can insert this snippet on wrong place. See forum link for example. Pobably CLI command would be more suitable?
> {code}
> /core-service=vault:add(vault-options=[("KEYSTORE_URL" => "PATH_TO_KEYSTORE"),("KEYSTORE_PASSWORD" => "MASKED_PASSWORD"),("KEYSTORE_ALIAS" => "ALIAS"),("SALT" => "SALT"),("ITERATION_COUNT" => "ITERATION_COUNT"),("ENC_FILE_DIR" => "ENC_FILE_DIR")])
> {code}
> 2. There is still reference to AS7
--
This message was sent by Atlassian JIRA
(v6.4.11#64026)
More information about the jboss-jira
mailing list