Uploaded image for project: 'Geronimo'
  1. Geronimo
  2. GERONIMO-4927

keystorePass attribute on TomcatWebSSLConnector GBean should be encrypted/obscured

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: 2.1.5, 2.2
    • Fix Version/s: 2.1.5
    • Component/s: None
    • Security Level: public (Regular issues)
    • Labels:
      None

      Description

      keystorePass does not conform to the current convention for encrypting/obscuring GBean attributes. Currently, attribute names with 'password' will be encrypted.

      We should either recognize keystorePass as an attribute requiring encryption or add a new keystorePassword attribute and start using that (with some appropriate migration logic, if a 'keystorePass' is configured). I guess I prefer the latter option. Other opinions?

        Attachments

        1. 4927.patch
          0.9 kB
          Ashish Jain

          Activity

            People

            • Assignee:
              kevan Kevan Miller
              Reporter:
              kevan Kevan Miller
            • Votes:
              0 Vote for this issue
              Watchers:
              0 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: