You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@cxf.apache.org by "Vandan Juvekar (Created) (JIRA)" <ji...@apache.org> on 2012/03/06 17:54:59 UTC
[jira] [Created] (CXF-4165) Allow encrypted password storage in
signaturePropFile
Allow encrypted password storage in signaturePropFile
-----------------------------------------------------
Key: CXF-4165
URL: https://issues.apache.org/jira/browse/CXF-4165
Project: CXF
Issue Type: Improvement
Components: WS-* Components
Affects Versions: 2.5.2
Reporter: Vandan Juvekar
Currently we have to store keystore passwords in cleartext in WSS4J signaturePropFile. Please allow storing keystore passwords in AES-encrypted and Base64-encoded format in signaturePropFile, such that the symmetric key used to encrypt / decrypt the keystore password can be externalized in another file.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (CXF-4165) Allow encrypted password storage in
signaturePropFile
Posted by "Freeman Fang (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CXF-4165?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13242044#comment-13242044 ]
Freeman Fang commented on CXF-4165:
-----------------------------------
Hi,
This improvement need be done in Apache WSS4J project, could you please create a jira tickets there and add a link back?
Thanks.
Freeman
> Allow encrypted password storage in signaturePropFile
> -----------------------------------------------------
>
> Key: CXF-4165
> URL: https://issues.apache.org/jira/browse/CXF-4165
> Project: CXF
> Issue Type: Improvement
> Components: WS-* Components
> Affects Versions: 2.5.2
> Reporter: Vandan Juvekar
>
> Currently we have to store keystore passwords in cleartext in WSS4J signaturePropFile. Please allow storing keystore passwords in AES-encrypted and Base64-encoded format in signaturePropFile, such that the symmetric key used to encrypt / decrypt the keystore password can be externalized in another file.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (CXF-4165) Allow encrypted password storage in
signaturePropFile
Posted by "Vandan Juvekar (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/CXF-4165?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13243237#comment-13243237 ]
Vandan Juvekar commented on CXF-4165:
-------------------------------------
Created a WSS4J issue: https://issues.apache.org/jira/browse/WSS-383
> Allow encrypted password storage in signaturePropFile
> -----------------------------------------------------
>
> Key: CXF-4165
> URL: https://issues.apache.org/jira/browse/CXF-4165
> Project: CXF
> Issue Type: Improvement
> Components: WS-* Components
> Affects Versions: 2.5.2
> Reporter: Vandan Juvekar
>
> Currently we have to store keystore passwords in cleartext in WSS4J signaturePropFile. Please allow storing keystore passwords in AES-encrypted and Base64-encoded format in signaturePropFile, such that the symmetric key used to encrypt / decrypt the keystore password can be externalized in another file.
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira