Uploaded image for project: 'Apache NiFi'
  1. Apache NiFi
  2. NIFI-2943

tls-toolkit pkcs12 truststore 0 entries

    XMLWordPrintableJSON

    Details

      Description

      When pkcs12 is used by the tls-toolkit, the resulting truststore has no entries when inspected by the keytool and the tls-toolkit certificate authority certificate is not trusted by NiFi.

      This seems to be due to the Java pkcs12 provider not supporting certificate entries:
      http://stackoverflow.com/questions/3614239/pkcs12-java-keystore-from-ca-and-user-certificate-in-java#answer-3614405

      The Bouncy Castle provider does seem to support certificates but we may not want to explicitly use that provider from within NiFi.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                bryanrosander@gmail.com Bryan Rosander
                Reporter:
                bryanrosander@gmail.com Bryan Rosander
              • Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: