[ARTEMIS-3387] LDAPLoginModule using ssl with specific truststore and password - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Wish
Status: Resolved
Priority: Minor
Resolution: Won't Do
Affects Version/s: None
Fix Version/s: None
Component/s: JAAS
Labels:
None

Description

Using ldaps requires to specify a truststore if the CA certificate of the ldap server is not in the cacerts file. The truststore can be set using command line parameters like

-Djavax.net.ssl.trustStore=/appl/amq/security/paul_1_test/paul_1_test_ts.p12

-Djavax.net.ssl.trustStorePassword=changeit

-Djavax.net.ssl.trustStoreType=PKCS12

However this shows the truststore password with the ps -ef command.

Desired solution : adding 3 properties to org.apache.activemq.artemis.spi.core.security.jaas.LDAPLoginModule

connectionTrustStore=

connectionTrustStorePassword=

connectionTrustStoreType=

So the truststore can be specified without showing it in the process list.

Attachments

Activity

People

Assignee:: Unassigned

Reporter:: Paul Vogt

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 15/Jul/21 11:18

Updated:: 12/Apr/24 05:21

Resolved:: 12/Apr/24 05:21