Hi, Yes. I also think we must keep a separate keystore for encrypt/decrypt usage. As I know, one of the reasons to remove keystore config from catalina-server.xml was to support Secure Vault.
How are we going to secure the keystore password now? Thanks! Best Regards, On Fri, Oct 17, 2014 at 12:41 PM, Asela Pathberiya <[email protected]> wrote: > On Fri, Oct 17, 2014 at 12:20 PM, KasunG Gajasinghe <[email protected]> > wrote: > > > > On Fri, Oct 17, 2014 at 12:14 PM, Darshana Gunawardana < > [email protected]> > > wrote: > >> > >> Hi KasunG, > >> > >> So this means we gonna get rid of registry keystore in the carbon.xml > >> right? > > Then we have only one keystore in carbon.xml and It would be used for > encrypt/decrypt.. ? But there are several other places that it has > been referred by default (Sign SAML, Pass through transport, Thrift > and so on). I think, it is better to have registry keystore that would > only be used for encrypt/decrypt. > > Thanks, > Asela. > > >> > > > > Yes. > > > >> > >> Thanks, > >> Darshana > >> > >> On Fri, Oct 17, 2014 at 12:04 PM, KasunG Gajasinghe <[email protected]> > >> wrote: > >>> > >>> Hi, > >>> > >>> In Carbon 4.3.0, we re-added the keyStore configuration to > >>> catalina-server.xml. It seems some products like ESB uses custom > >>> catalina-server.xml files. So, please make sure to update the > customized > >>> catalina-server.xml to have the keystore configuration as follows. > >>> > >>> You need to add the following two attributes into your > >>> catalina-server.xml under the https connector. > >>> > >>> > >>> > keystoreFile="${carbon.home}/repository/resources/security/wso2carbon.jks" > >>> keystorePass="wso2carbon" > >>> > >>> > >>> @docs team, please note this change for Carbon 4.3.0. > >>> > >>> Regards, > >>> KasunG > >>> > >>> > >>> -- > >>> Kasun Gajasinghe > >>> Senior Software Engineer, WSO2 Inc. > >>> email: kasung AT spamfree wso2.com > >>> linked-in: http://lk.linkedin.com/in/gajasinghe > >>> blog: http://kasunbg.org > >>> > >>> > >>> > >>> _______________________________________________ > >>> Dev mailing list > >>> [email protected] > >>> http://wso2.org/cgi-bin/mailman/listinfo/dev > >>> > >> > >> > >> > >> -- > >> Regards, > >> > >> Darshana Gunawardana > >> Software Engineer > >> WSO2 Inc.; http://wso2.com > >> E-mail: [email protected] > >> Mobile: +94718566859 > >> Lean . Enterprise . Middleware > > > > > > > > > > -- > > Kasun Gajasinghe > > Senior Software Engineer, WSO2 Inc. > > email: kasung AT spamfree wso2.com > > linked-in: http://lk.linkedin.com/in/gajasinghe > > blog: http://kasunbg.org > > > > > > > > _______________________________________________ > > Dev mailing list > > [email protected] > > http://wso2.org/cgi-bin/mailman/listinfo/dev > > > > > > -- > Thanks & Regards, > Asela > > ATL > Mobile : +94 777 625 933 > +358 449 228 979 > _______________________________________________ > Dev mailing list > [email protected] > http://wso2.org/cgi-bin/mailman/listinfo/dev > -- Isuru Perera Senior Software Engineer | WSO2, Inc. | http://wso2.com/ Lean . Enterprise . Middleware about.me/chrishantha
_______________________________________________ Dev mailing list [email protected] http://wso2.org/cgi-bin/mailman/listinfo/dev
