[
https://issues.apache.org/jira/browse/NIFI-6770?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16954150#comment-16954150
]
Andy LoPresto commented on NIFI-6770:
-------------------------------------
No, while there are programmatic ways to create a keystore with no password,
{{keytool}} does not allow this and I think we should enforce passwords on
keystores (which contain private keys) as well.
> Allow use of truststore with no password from SSLContextService
> ---------------------------------------------------------------
>
> Key: NIFI-6770
> URL: https://issues.apache.org/jira/browse/NIFI-6770
> Project: Apache NiFi
> Issue Type: Improvement
> Affects Versions: 1.9.2
> Reporter: Bryan Bende
> Assignee: Nathan Gough
> Priority: Minor
> Time Spent: 10m
> Remaining Estimate: 0h
>
> Currently the StandardSSLContextService and
> StandardRestrictedSSLContextService require that a truststore password is
> provided when a truststore is configured. It is possible that someone creates
> a truststore without a password and we should allow the use of that.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
