You are viewing a plain text version of this content. The canonical link for it is here.
Posted to server-dev@james.apache.org by "Benoit Tellier (Jira)" <se...@james.apache.org> on 2021/08/28 05:44:00 UTC
[jira] [Created] (JAMES-3638) Allow alternative keystore formats
like PKCS12
Benoit Tellier created JAMES-3638:
-------------------------------------
Summary: Allow alternative keystore formats like PKCS12
Key: JAMES-3638
URL: https://issues.apache.org/jira/browse/JAMES-3638
Project: James Server
Issue Type: Improvement
Components: IMAPServer, POP3Server, SMTPServer
Reporter: Benoit Tellier
Fix For: 3.7.0
In this tread we discuss enhancements to the IMAP/POP3/SMTP cryptography: https://www.mail-archive.com/server-dev@james.apache.org/msg70772.html
The need of having alternatives to the JKS keystore format was expressed and support for PKCS12 format requested.
This change is easy to carry over: have one more parameter to let people express which format they use. This looks like:
{code:java}
<tls socketTLS="false" startTLS="false">
<keystore>file://conf/keystore</keystore>
<keystoreType>PKCS12</keystoreType>
<secret>yoursecret</secret>
<provider>org.bouncycastle.jce.provider.BouncyCastleProvider</provider>
<algorithm>SunX509</algorithm>
</tls>
{code}
Generation then becomes:
{code:java}
$ keytool -genkey -alias james -keyalg RSA -storetype PKCS12 -keystore keystore
{code}
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: server-dev-unsubscribe@james.apache.org
For additional commands, e-mail: server-dev-help@james.apache.org