cxf-issues mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Colm O hEigeartaigh (JIRA)" <j...@apache.org>
Subject [jira] [Closed] (CXF-5926) Extend SSL KeyManagers with password callback handler
Date Fri, 14 Oct 2016 14:28:22 GMT

     [ https://issues.apache.org/jira/browse/CXF-5926?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]

Colm O hEigeartaigh closed CXF-5926.
------------------------------------

> Extend SSL KeyManagers with password callback handler 
> ------------------------------------------------------
>
>                 Key: CXF-5926
>                 URL: https://issues.apache.org/jira/browse/CXF-5926
>             Project: CXF
>          Issue Type: Improvement
>          Components: Core
>            Reporter: Andrei Shakirin
>            Assignee: Andrei Shakirin
>             Fix For: 3.0.6, 2.7.17, 3.1.2
>
>
> Currently user can specify password for private key in SSL KeyManager configuration only
explicitly:
> {code}
> <http:conduit name="https://localhost:.*/customerservice/.*">
> 	<http:client ConnectionTimeout="3000000" ReceiveTimeout="3000000" />
> 	<http:tlsClientParameters>
> 		<sec:keyManagers keyPassword="ckpass">
> 			<sec:keyStore file="src/main/config/clientKeystore.jks"
> 				password="cspass" type="JKS" />
> 		</sec:keyManagers>
> 		<sec:trustManagers>
> 			<sec:keyStore file="src/main/config/clientKeystore.jks"
> 				password="cspass" type="JKS" />
> 		</sec:trustManagers>
> 	</http:tlsClientParameters>
> </http:conduit>
> {code}
> There are some users requests to support password callback handler as well. 
> Proposal is to introduce optional attribute keyPasswordCallbackHandler in keyManagers
element. This attribute will contain full class name implementing JSE CallbackHandler interface
and expecting PasswordCallback element in input array. Path to keystore will be used as identifier
in PasswordCallback.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

Mime
View raw message