[security-dev] Vault to store sensitive data

Bruno Oliveira bruno at abstractj.org
Mon Apr 14 13:51:19 EDT 2014


Good morning, I would like to know if Vaults from PicketBox are specific
for datasources or any kind of sensitive data. I would like to store a
key material, used for encryption and not sure if this is the correct
configuration for it:

- standalone.xml

   <system-properties>
       <property name="key-material"
value="${VAULT::ds_SecurityVaultDS::password::2DyuLAae8wP.pSsrT/gGhn}"/>
    </system-properties>

 
   <vault>
        <vault-option name="KEYSTORE_URL"
value="/servers/wildfly-current/vault/vault.keystore"/>
        <vault-option name="KEYSTORE_PASSWORD"
value="MASK-2DyuLAae8wP.pSsrT/gGhn"/>
        <vault-option name="KEYSTORE_ALIAS" value="vault"/>
        <vault-option name="SALT" value="2bzeScxo"/>
        <vault-option name="ITERATION_COUNT" value="16"/>
        <vault-option name="ENC_FILE_DIR"
value="/servers/wildfly-current/vault/"/>
    </vault>

This is the stack trace when Wildfly is initialized:
https://gist.github.com/abstractj/4542c7cf1aa8a36ebad9. I would
appreciate any pointers to the documentation.

-- 
abstractj


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 495 bytes
Desc: OpenPGP digital signature
Url : http://lists.jboss.org/pipermail/security-dev/attachments/20140414/b29a76cb/attachment.bin 


More information about the security-dev mailing list