You are viewing a plain text version of this content. The canonical link for it is here.

Posted to issues@cxf.apache.org by "Freeman Fang (Commented) (JIRA)" <ji...@apache.org> on 2012/03/30 06:10:58 UTC

[jira] [Commented] (CXF-4165) Allow encrypted password storage in signaturePropFile

    [ https://issues.apache.org/jira/browse/CXF-4165?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13242044#comment-13242044 ] 

Freeman Fang commented on CXF-4165:
-----------------------------------

Hi,

This improvement need be done in Apache WSS4J project, could you please create a jira tickets there and add a link back?

Thanks.

Freeman
                
> Allow encrypted password storage in signaturePropFile
> -----------------------------------------------------
>
>                 Key: CXF-4165
>                 URL: https://issues.apache.org/jira/browse/CXF-4165
>             Project: CXF
>          Issue Type: Improvement
>          Components: WS-* Components
>    Affects Versions: 2.5.2
>            Reporter: Vandan Juvekar
>
> Currently we have to store keystore passwords in cleartext in WSS4J signaturePropFile. Please allow storing keystore passwords in AES-encrypted and Base64-encoded format in signaturePropFile, such that the symmetric key used to encrypt / decrypt the keystore password can be externalized in another file.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira