You are viewing a plain text version of this content. The canonical link for it is here.

Posted to user@jclouds.apache.org by Bk Lau <bk...@gmail.com> on 2013/09/14 00:42:37 UTC

How to specify SSL key for HTTPs access

Hi :

How do I specify  specific SSL key for, say, a keyStone
authentication. Some properties overrides exists to do this?
This has been asked before [1] sometime ago. So what's the current status
on this?.

Currently all the JClouds examples uses HTTP only.
That means plain username/password(even a single time) can be stolen, even
if its submitted for a token.

Thanks,

BK


[1]
http://stackoverflow.com/questions/8250356/jclouds-how-to-supply-own-keystore-when-creating-blobstorecontext

Re: How to specify SSL key for HTTPs access

Posted by Andrew Phillips <an...@apache.org>.

> I will check it out next week I'll let you know. I think the
> -Djava.net.ssl... parameters is most likely the best bet.

Great, thanks!

ap

Re: How to specify SSL key for HTTPs access

Posted by Bk Lau <bk...@gmail.com>.

Andrew:

I will check it out next week I'll let you know. I think the
-Djava.net.ssl... parameters is most likely the best bet.

/BK


On Fri, Sep 13, 2013 at 7:05 PM, Andrew Phillips <an...@apache.org> wrote:

> Currently all the JClouds examples uses HTTP only.
>> That means plain username/password(even a single time) can be stolen, even
>> if its submitted for a token.
>>
>
> Are you able to modify the JRE keystore, or set it using the standard
> -Djava.net.ssl... parameters (e.g. [1]) as specified in the answer [2]?
>
> ap
>
> [1] http://docs.oracle.com/javadb/**10.3.3.0/adminguide/**
> cadminsslserver.html<http://docs.oracle.com/javadb/10.3.3.0/adminguide/cadminsslserver.html>
> [2] http://stackoverflow.com/a/**13423904/217013<http://stackoverflow.com/a/13423904/217013>
>

Re: How to specify SSL key for HTTPs access

Posted by Andrew Phillips <an...@apache.org>.

> Currently all the JClouds examples uses HTTP only.
> That means plain username/password(even a single time) can be stolen, even
> if its submitted for a token.

Are you able to modify the JRE keystore, or set it using the standard  
-Djava.net.ssl... parameters (e.g. [1]) as specified in the answer [2]?

ap

[1] http://docs.oracle.com/javadb/10.3.3.0/adminguide/cadminsslserver.html
[2] http://stackoverflow.com/a/13423904/217013