Uploaded image for project: 'WSS4J'
  1. WSS4J
  2. WSS-294

Merlin doesn't support physical providers with no keystore file

VotersWatch issueWatchersLinkCloneUpdate Comment AuthorReplace String in CommentUpdate Comment VisibilityDelete Comments
    XMLWordPrintableJSON

Details

    • Bug
    • Status: Closed
    • Major
    • Resolution: Duplicate
    • 1.6.1
    • 1.6.2
    • WSS4J Handlers
    • None
    • using PKCS11 provider

    Description

      At Merlin.loadProperties, in order for the load method to be called, there must be a non null inputStream.
      In case of physical keystore (like smart card), there is no keystore inputStream, the keystore is not loaded and later on we'll get an error when we try
      to retrive a certificate from the keystore.

      The solution is to allow not getting a keystore file and in this case just send a null inputStream to the load method (it works).

      There is a workaround: creating a new class which extends Merlin and just override the loadProperties method (though it's not perfect cause we can't
      set the loadCACerts property (it's private).

      Attachments

        Issue Links

        Activity

          This comment will be Viewable by All Users Viewable by All Users
          Cancel

          People

            coheigea Colm O hEigeartaigh
            rotem rotem a
            Votes:
            0 Vote for this issue
            Watchers:
            0 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:

              Time Tracking

                Estimated:
                Original Estimate - 1h
                1h
                Remaining:
                Remaining Estimate - 1h
                1h
                Logged:
                Time Spent - Not Specified
                Not Specified

                Slack

                  Issue deployment