You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Colm O hEigeartaigh (JIRA)" <ji...@apache.org> on 2017/03/28 06:55:41 UTC

[jira] [Closed] (CXF-4165) Allow encrypted password storage in signaturePropFile

     [ https://issues.apache.org/jira/browse/CXF-4165?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]

Colm O hEigeartaigh closed CXF-4165.
------------------------------------
    Resolution: Fixed
      Assignee: Colm O hEigeartaigh

This issue has been fixed for all CXF releases that pick up WSS4J 2.0.0 - see WSS-383

> Allow encrypted password storage in signaturePropFile
> -----------------------------------------------------
>
>                 Key: CXF-4165
>                 URL: https://issues.apache.org/jira/browse/CXF-4165
>             Project: CXF
>          Issue Type: Improvement
>          Components: WS-* Components
>    Affects Versions: 2.5.2
>            Reporter: Vandan Juvekar
>            Assignee: Colm O hEigeartaigh
>
> Currently we have to store keystore passwords in cleartext in WSS4J signaturePropFile. Please allow storing keystore passwords in AES-encrypted and Base64-encoded format in signaturePropFile, such that the symmetric key used to encrypt / decrypt the keystore password can be externalized in another file.



--
This message was sent by Atlassian JIRA
(v6.3.15#6346)