On Tue, Apr 8, 2014 at 1:33 PM, Sagara Gunathunga <[email protected]> wrote:
> > Hi Madhuka, > > Just adding this configuration only does not make much sense instead we > need some description with few lines. > > - Use cases for RegistryKeyStore > Configuring an ESB cluster for WS-Security, https and the use of digital certificates. It is fronted by ELB. Therefore request can be served any nodes. client app send to the ESB messages that are signed and encrypted as specifiied by WS-Security; specifically we are using a proxy service secured with the "Sign and encrypt - X509 Authentication" ESB security scenario. - Why we need another KeyStore other than primary one ( purpose of having > two keystores in carbon.xml) > Cn depends on hostname so the 2 private keys are different > - How this works > For Encrypt Decrypt it will picked from RegistryKeyStore > - What kind of keys supported > > Please work with Manoj/a Carbon team/Docs team member to get this done. > > Thanks ! > > > On Mon, Apr 7, 2014 at 11:40 AM, Madhuka Udantha <[email protected]> wrote: > >> Hi, Sagara >> >> Here is configuration for RegistryKeyStore that to be used in carbon.xml >> >> <!-- >> Encrypt Decrypt Store will be used for encrypting and decrypting >> --> >> <RegistryKeyStore> >> <!-- Keystore file location--> >> >> <Location>${carbon.home}/repository/resources/security/wso2carbon.jks</Location> >> <!-- Keystore type (JKS/PKCS12 etc.)--> >> <Type>JKS</Type> >> <!-- Keystore password--> >> <Password>wso2carbon</Password> >> <!-- Private Key alias--> >> <KeyAlias>wso2carbon</KeyAlias> >> <!-- Private Key password--> >> <KeyPassword>wso2carbon</KeyPassword> >> </RegistryKeyStore> >> >> >> It is not added to documentation, need[1] to added to documentation. >> >> Thanks >> >> [1] https://wso2.org/jira/browse/DOCUMENTATION-696 >> >> >> On Mon, Apr 7, 2014 at 2:32 PM, Sagara Gunathunga <[email protected]>wrote: >> >>> >>> >>> HI Manoj/Madhuka, >>> >>> Could you please point me to the documentation on <RegistryKeyStore> >>> entry ? >>> >>> Thanks ! >>> >>> >>> On Wed, Jan 8, 2014 at 5:28 AM, Manoj Kumara <[email protected]> wrote: >>> >>>> Hi All, >>>> >>>> This was due to jira issue [1]. Along with the fix we also patched the >>>> carbon.xml file and its on the patch. Please refer the README.txt on >>>> patch0004 [2] for the instructions. This issue is due to missing the config >>>> files during applying the patch. >>>> >>>> [1] https://wso2.org/jira/browse/CARBON-14500 >>>> [2] >>>> http://svn.wso2.org/repos/wso2/carbon/kernel/branches/4.2.0/patches/patch0004/README.txt >>>> >>>> Thanks, >>>> Manoj >>>> >>>> >>>> Best Regards.. >>>> >>>> >>>> Manoj Kumara >>>> Software Engineer >>>> WSO2, Inc.; http://wso2.com >>>> >>>> Twitter: http://twitter.com/ManKuma >>>> Mobile: +94713448188 >>>> >>>> >>>> On Wed, Jan 8, 2014 at 6:36 AM, Isuru Perera <[email protected]> wrote: >>>> >>>>> What is the reason for introducing another keystore for Registry? >>>>> >>>>> IMO, we should reduce the number of keystores in a product. >>>>> >>>>> >>>>> On Tue, Jan 7, 2014 at 9:12 PM, Malaka Silva <[email protected]> wrote: >>>>> >>>>>> Hi, >>>>>> >>>>>> We have experienced a issue with ESB 4.8.1. >>>>>> >>>>>> Issue seems to be introduced with kernel patch 004 >>>>>> >>>>>> There was an error thrown when trying to add a tenant using GUI. >>>>>> >>>>>> Adding following to the carbon.xml (manually) seem to fix it. >>>>>> >>>>>> <RegistryKeyStore> >>>>>> <!-- Keystore file location--> >>>>>> >>>>>> <Location>${carbon.home}/repository/resources/security/wso2carbon.jks</Location> >>>>>> <!-- Keystore type (JKS/PKCS12 etc.)--> >>>>>> <Type>JKS</Type> >>>>>> <!-- Keystore password--> >>>>>> <Password>wso2carbon</Password> >>>>>> <!-- Private Key alias--> >>>>>> <KeyAlias>wso2carbon</KeyAlias> >>>>>> <!-- Private Key password--> >>>>>> <KeyPassword>wso2carbon</KeyPassword> >>>>>> </RegistryKeyStore> >>>>>> >>>>>> I'm not sure how this needs to be added to the build? >>>>>> >>>>>> -- >>>>>> >>>>>> Best Regards, >>>>>> >>>>>> Malaka Silva >>>>>> Senior Tech Lead >>>>>> M: +94 777 219 791 >>>>>> Tel : 94 11 214 5345 >>>>>> Fax :94 11 2145300 >>>>>> LinkedIn : http://www.linkedin.com/pub/malaka-silva/6/33/77 >>>>>> Blog : http://mrmalakasilva.blogspot.com/ >>>>>> >>>>>> WSO2, Inc. >>>>>> lean . enterprise . middleware >>>>>> http://www.wso2.com/ >>>>>> http://www.wso2.com/about/team/malaka-silva/<http://wso2.com/about/team/malaka-silva/> >>>>>> >>>>>> Save a tree -Conserve nature & Save the world for your future. Print >>>>>> this email only if it is absolutely necessary. >>>>>> >>>>>> _______________________________________________ >>>>>> Dev mailing list >>>>>> [email protected] >>>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>>> >>>>>> >>>>> >>>>> >>>>> -- >>>>> Isuru Perera >>>>> Senior Software Engineer | WSO2, Inc. | http://wso2.com/ >>>>> Lean . Enterprise . Middleware >>>>> >>>>> about.me/chrishantha >>>>> >>>>> _______________________________________________ >>>>> Dev mailing list >>>>> [email protected] >>>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>>> >>>>> >>>> >>>> _______________________________________________ >>>> Dev mailing list >>>> [email protected] >>>> http://wso2.org/cgi-bin/mailman/listinfo/dev >>>> >>>> >>> >>> >>> -- >>> Sagara Gunathunga >>> >>> Senior Technical Lead; WSO2, Inc.; http://wso2.com >>> V.P Apache Web Services; http://ws.apache.org/ >>> Linkedin; http://www.linkedin.com/in/ssagara >>> Blog ; http://ssagara.blogspot.com >>> >>> >> >> >> -- >> *Madhuka* Udantha >> Senior Software Engineer >> Development Technologies >> WSO2 Inc. : http://wso2.com >> >> *Mobile*: +94774066336 >> *Blog*: http://madhukaudantha.blogspot.com/ >> > > > > -- > Sagara Gunathunga > > Senior Technical Lead; WSO2, Inc.; http://wso2.com > V.P Apache Web Services; http://ws.apache.org/ > Linkedin; http://www.linkedin.com/in/ssagara > Blog ; http://ssagara.blogspot.com > > -- *Madhuka* Udantha Senior Software Engineer Development Technologies WSO2 Inc. : http://wso2.com *Mobile*: +94774066336 *Blog*: http://madhukaudantha.blogspot.com/
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
