You are viewing a plain text version of this content. The canonical link for it is here.

Posted to users@servicemix.apache.org by JoeR <re...@yahoo.com> on 2012/02/21 21:50:42 UTC

keyStore password encryption

Is it possible to encrypt/obfuscate the keystore password in the
camel-config.xml ?  I am attempting to implement a proxy similar to the
example ( http://camel.apache.org/cxf-proxy-example.html ) and would like to
secure the webservice.  The clear text passwords are a little concerning.  

I am running with ServiceMix 4.4.0
  
<httpj:engine-factory bus="cxf">
      <httpj:engine port="11100">
        <httpj:tlsServerParameters>
          <sec:keyManagers keyPassword="password">
            <sec:keyStore type="JKS" 
                          password="password" 
                          file="certs/keystore.jks"/>
          </sec:keyManagers>
          <sec:trustManagers>
            <sec:keyStore type="JKS" 
                          password="password"
                          file="certs/truststore.jks"/>
          </sec:trustManagers>
          <sec:cipherSuitesFilter>
            <sec:include>.*_WITH_3DES_.*</sec:include>
            <sec:include>.*_WITH_DES_.*</sec:include>
            <sec:exclude>.*_WITH_NULL_.*</sec:exclude>
            <sec:exclude>.*_DH_anon_.*</sec:exclude>
          </sec:cipherSuitesFilter>
          <sec:clientAuthentication want="true" required="true"/>
        </httpj:tlsServerParameters>
      </httpj:engine>
    </httpj:engine-factory>


Any suggestions would be appreciated.  Thanks


--
View this message in context: http://servicemix.396122.n5.nabble.com/keyStore-password-encryption-tp5503338p5503338.html
Sent from the ServiceMix - User mailing list archive at Nabble.com.