You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@guacamole.apache.org by "bendemctl (Jira)" <ji...@apache.org> on 2023/06/01 15:11:00 UTC

[jira] [Created] (GUACAMOLE-1797) Support using private key stored on disk instead of inside the DB

bendemctl created GUACAMOLE-1797:
------------------------------------

             Summary: Support using private key stored on disk instead of inside the DB
                 Key: GUACAMOLE-1797
                 URL: https://issues.apache.org/jira/browse/GUACAMOLE-1797
             Project: Guacamole
          Issue Type: New Feature
          Components: guacamole-auth-jdbc
            Reporter: bendemctl


We are currently setting up guacamole here and I just realised that the connection credentials are stored in plain text in the database. Would it be possible to allow providing a path to the private key on disk (just like ssh_known_hosts) instead of storing it in the database?

This would allow us to create new connection without requiring access to the private key (just have to known where it's at). It would also allow us to rotate the key directly on the server without having to mess with database updates.

We also considered GUACAMOLE-426.



--
This message was sent by Atlassian Jira
(v8.20.10#820010)