Return-Path: Delivered-To: apmail-geronimo-dev-archive@www.apache.org Received: (qmail 67439 invoked from network); 1 Aug 2006 09:39:50 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 1 Aug 2006 09:39:50 -0000 Received: (qmail 91202 invoked by uid 500); 1 Aug 2006 09:39:47 -0000 Delivered-To: apmail-geronimo-dev-archive@geronimo.apache.org Received: (qmail 90973 invoked by uid 500); 1 Aug 2006 09:39:46 -0000 Mailing-List: contact dev-help@geronimo.apache.org; run by ezmlm Precedence: bulk list-help: list-unsubscribe: List-Post: Reply-To: dev@geronimo.apache.org List-Id: Delivered-To: mailing list dev@geronimo.apache.org Received: (qmail 90952 invoked by uid 99); 1 Aug 2006 09:39:46 -0000 Received: from asf.osuosl.org (HELO asf.osuosl.org) (140.211.166.49) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 01 Aug 2006 02:39:46 -0700 X-ASF-Spam-Status: No, hits=0.0 required=10.0 tests= X-Spam-Check-By: apache.org Received: from [209.237.227.198] (HELO brutus.apache.org) (209.237.227.198) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 01 Aug 2006 02:39:45 -0700 Received: from brutus (localhost [127.0.0.1]) by brutus.apache.org (Postfix) with ESMTP id 70CB441001D for ; Tue, 1 Aug 2006 09:37:14 +0000 (GMT) Message-ID: <13052509.1154425034459.JavaMail.jira@brutus> Date: Tue, 1 Aug 2006 02:37:14 -0700 (PDT) From: "Vamsavardhana Reddy (JIRA)" To: dev@geronimo.apache.org Subject: [jira] Commented: (GERONIMO-2218) KeyStore portlet: Functionality missing from 1.0 In-Reply-To: <19673513.1153663273855.JavaMail.jira@brutus> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N [ http://issues.apache.org/jira/browse/GERONIMO-2218?page=comments#action_12424805 ] Vamsavardhana Reddy commented on GERONIMO-2218: ----------------------------------------------- CONCERN: 1) It seems like jetty has some problems if there is more than one unlocked key in the same keystore. I'm not sure what these are exactly, but I couldn't get jetty to start once I had more than one key unlocked. I think this is the largest issue. REPLY: The issue is not because multiple keys are unlocked, but because of the keyPassword. As long as the keyPassword is "secret" (which is hardcoded somewhere) there is no problem with how many keys are in unlocked state. This calls for adding an "alias" parameter in JettySSLConnector. Without this, all the keys need to be in unlocked state since there is no control on which one the connector will pickup. > KeyStore portlet: Functionality missing from 1.0 > ------------------------------------------------- > > Key: GERONIMO-2218 > URL: http://issues.apache.org/jira/browse/GERONIMO-2218 > Project: Geronimo > Issue Type: Bug > Security Level: public(Regular issues) > Components: console > Affects Versions: 1.1, 1.1.1 > Environment: Win XP, Sun JDK1.4.2_08 > Reporter: Vamsavardhana Reddy > Assigned To: Joe Bohn > Priority: Critical > Fix For: 1.1.1 > > Attachments: delete-fix.patch, GERONIMO-2218-with-unlockkey-new.patch, GERONIMO-2218-with-unlockkey.patch, GERONIMO-2218.patch > > > Functionality missing from AG1.0 includes > 1. Ability to view Trusted Certificate and Private Key Entry details > 2. Ability to generate CertificateRequests > 3. Ability to import CA reply > The 2nd and 3rd functions from above are most important and without these the portlet is of very less (or no) use in any practical scenario. -- This message is automatically generated by JIRA. - If you think it was sent incorrectly contact one of the administrators: http://issues.apache.org/jira/secure/Administrators.jspa - For more information on JIRA, see: http://www.atlassian.com/software/jira