Hi.
I have followed the Restlet HTTPS guide
(http://wiki.restlet.org/docs_2.0/13-restlet/27-restlet/46-restlet/213-restlet.html)
to configure HTTPS. In particular, it results in a code similar to this one:
parameters.add("sslContextFactory", PkixSslContextFactory.class.getName());
parameters.add("keystorePath", "c:\\dev\\poc\\il-mark-lt.jks");
parameters.add("keystorePassword", PASSWORD);
parameters.add("keyPassword", PASSWORD);
parameters.add("keystoreType", "JKS");
Where the PASSWORD is the password used to protect the key store as well as the
used key value pair. My question is what is the importance of this password? It
appears in clear text, so either it is unimportant (please, explain why) or
this is a severe security hole (please, explain how to fix it).
Thanks.
------------------------------------------------------
http://restlet.tigris.org/ds/viewMessage.do?dsForumId=4447&dsMessageId=2889133
