[jboss-jira] [JBoss JIRA] (ELY-969) Add a KeyStore implementation that can use the key store password for retrieving entries.
Martin Choma (JIRA)
issues at jboss.org
Mon Feb 20 07:34:00 EST 2017
[ https://issues.jboss.org/browse/ELY-969?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13366094#comment-13366094 ]
Martin Choma commented on ELY-969:
----------------------------------
Cool!
But it seems to me moving key password(s) into KeyStore, makes key-manager resource more pointless. As key-manager is in real used only 1 (however array is prepared), could be IMO moved into key-store resource (with only valid attribute algorithm).
> Add a KeyStore implementation that can use the key store password for retrieving entries.
> -----------------------------------------------------------------------------------------
>
> Key: ELY-969
> URL: https://issues.jboss.org/browse/ELY-969
> Project: WildFly Elytron
> Issue Type: Feature Request
> Components: KeyStores
> Reporter: Darran Lofthouse
> Assignee: Darran Lofthouse
> Fix For: 1.1.0.Beta28
>
>
> A KeyManager which uses a KeyStore is defined independently of the KeyStore - it is the KeyManager that has the password for the entry in the KeyStore whilst the KeyStore has the password for the overall store.
> In many cases the password used for the overall store is the same password as used for the entries.
> We should provide a KeyStore implementation that can substitute the password received.
> We may even be able to go one step further and add a password resolver which could mean a CredentialStore is used to obtain the password for different entries,
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list