[GERONIMO-4927] keystorePass attribute on TomcatWebSSLConnector GBean should be encrypted/obscured - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.1.5, 2.2
Fix Version/s: 2.1.5
Component/s: None
Security Level: public (Regular issues)
Labels:
None

Description

keystorePass does not conform to the current convention for encrypting/obscuring GBean attributes. Currently, attribute names with 'password' will be encrypted.

We should either recognize keystorePass as an attribute requiring encryption or add a new keystorePassword attribute and start using that (with some appropriate migration logic, if a 'keystorePass' is configured). I guess I prefer the latter option. Other opinions?

Attachments

- Sort By Name
- Sort By Date
- Ascending
- Descending

4927.patch
04/Nov/09 15:03
0.9 kB
Ashish Jain

Activity

People

Assignee:: Kevan Lee Miller

Reporter:: Kevan Lee Miller

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 23/Oct/09 15:59

Updated:: 18/Nov/09 04:04

Resolved:: 18/Nov/09 04:04