Uploaded image for project: 'MidPoint'
  1. MidPoint
  2. MID-6504

Keystore set in config xml is not used for SSL certs, a default, set in midpoint.sh is used instead.

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Major
    • Resolution: Won't Fix
    • Affects Version/s: 4.2
    • Fix Version/s: 4.2
    • Component/s: None
    • Labels:
    • Environment:

      MidPoint V4.2.M3

      Git describe: v4.2devel-1542-gffe0e600aa

      Build: 4.2-20200916.002440-126 (as in Nexus)

    • Subscription:
      Active subscription
    • Milestone:
      M3

      Description

      We are using a different file stored in a different directory then the default keystore (var/ keystore.jceks)

      i.e. Specified in config.xml as:  

      <keystore>
      <keyStorePath>${midpoint.home}/keystore/foo_baar.jceks</keyStorePath>

      ...

      <keystore>

      Yet this keystore is ignored and a default is used which is specified in the midpoint.sh start script suite with the flag: -Djavax.net.ssl.trustStore=${MIDPOINT_HOME}/keystore.jceks

      This behavior was not in the earlier versions.

        Attachments

          Issue Links

          relates to

          Task - A task that needs to be done. MID-6505 User-friendly truststore

          • Minor - Community-reported issue of higher importance
          • Open

            Activity

              People

              Assignee:
              mmacik Matus Macik
              Reporter:
              mmacik Matus Macik
              Votes:
              0 Vote for this issue
              Watchers:
              3 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: