[keycloak-dev] Private Key encryption
Stian Thorgersen
stian at redhat.com
Wed Aug 27 02:10:06 EDT 2014
Absolutely :)
This is something we've been discussing and we aim to add it, but it'll be after 1.0.final is released.
----- Original Message -----
> From: "Alarik Myrin" <alarik at zwift.com>
> To: keycloak-dev at lists.jboss.org
> Sent: Wednesday, 27 August, 2014 3:08:42 AM
> Subject: Re: [keycloak-dev] Private Key encryption
>
> ...sorry, and by "private key" I mean the realm private key.
>
>
> On Tue, Aug 26, 2014 at 8:52 PM, Alarik Myrin < alarik at zwift.com > wrote:
>
>
>
> Does anyone think it would be a good idea to store the private key encrypted?
> This would require a separate secret, presumably stored in a configuration
> file, or using the PicketLink Vault Tool, to decrypt the private key for
> use. Anyone who can get the private key can start issuing access tokens to
> whatever resources they want.
>
>
> _______________________________________________
> keycloak-dev mailing list
> keycloak-dev at lists.jboss.org
> https://lists.jboss.org/mailman/listinfo/keycloak-dev
More information about the keycloak-dev
mailing list