Hi,
I'm trying to add secure vault to some password properties and found
following two dependencies. I debugged the code using both dependencies and
found that the way we need to define which properties are secured differs.
*Approach 1 : *
<dependency>
<groupId>org.wso2.carbon</groupId>
<artifactId>org.wso2.carbon.securevault</artifactId>
<version>4.2.0</version>
</dependency>
Secured property names have to be listed comma separated in a property
named protectedTokens.
*protectedTokens=**Carbon.Security.KeyStore.Password,**Carbon.Security.KeyStore.Password*
Apart from that, when creating the SecretResolver, create method accepts
properties and property_prifix as parameters.
*SecretResolver secretResolver = SecretResolverFactory.create(properties,
"");*
*Approach 2 : *
<dependency>
<groupId>org.wso2.securevault</groupId>
<artifactId>org.wso2.securevault</artifactId>
<version>1.0.0-wso2v2</version>
</dependency>
Secured properties should have the alias secretAlias.
*Carbon.Security.KeyStore.Password=secretAlias:Carbon.Security.KeyStore.Password**Carbon.Security.TrustStore.Password*=*secretAlias:Carbon.Security.KeyStore.Password*
Apart from that, when creating the SecretResolver, create method accepts
properties only as the parameter.
*SecretResolver secretResolver = SecretResolverFactory.create(properties);*
Which one is correct ?
--
Tharindu Edirisinghe
Software Engineer | WSO2 Inc
Identity Server Team
mobile : +94 775 181586
_______________________________________________
Dev mailing list
[email protected]
http://wso2.org/cgi-bin/mailman/listinfo/dev
