• Post Reply Bookmark Topic Watch Topic
  • New Topic

Rampart 1.5 deployment and password encryption.

 
Ed Lee
Greenhorn
Posts: 5
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
I was wondering if anyone knew if it were possible to encrypt the password for the org.apache.ws.security.crypto.merlin.keystore.password?

Currently the Axis2 services.xml contain the following configuration parameters for Rampart, but a requirement we have is that all password field need to be encrypted.

- <ramp:RampartConfig xmlns:ramp="http://ws.apache.org/rampart/policy">
<ramp:user>service</ramp:user>
<ramp:passwordCallbackClass>ServiceCallback</ramp:passwordCallbackClass>
<ramp:policyValidatorCbClass>CustomPolicyBasedResultsValidator</ramp:policyValidatorCbClass>
- <ramp:signatureCrypto>
- <ramp:crypto provider="org.apache.ws.security.components.crypto.Merlin">
<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.type">JKS</ramp:property>
<ramp:property name="org.apache.ws.security.crypto.merlin.file">service.jks</ramp:property>
<ramp:property name="org.apache.ws.security.crypto.merlin.keystore.password">apache</ramp:property>
</ramp:crypto>
</ramp:signatureCrypto>
</ramp:RampartConfig>




 
Ulf Dittmer
Rancher
Posts: 42970
73
  • Mark post as helpful
  • send pies
  • Quote
  • Report post to moderator
But then the encryption key needs to be stored ... which isn't really any better than storing a password.
 
  • Post Reply Bookmark Topic Watch Topic
  • New Topic
Boost this thread!