scep client: support externally defined passwords via encrypted config entry #121

lefou · 2019-09-27T07:50:11Z

The current values for blended.security.ssl.storePass and blended.security.ssl.keyPass are used as seeds to internally generate the real password. This design doesn't allow the usage of externally defined passwords. Hence, apps using the scep client are forced to use the generated password from the scep client.

Solution: The app or some external entity should give the passwords to us. Of course, config files needs to support the encryption syntax (#91). The feature to generating passwords from seed can be kept as a fallback.

The text was updated successfully, but these errors were encountered:

lefou self-assigned this Sep 27, 2019

lefou added the enhancement label Sep 27, 2019

lefou mentioned this issue Nov 18, 2019

Support for (encrypted) explicit passwords in SCEP client #122

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

scep client: support externally defined passwords via encrypted config entry #121

scep client: support externally defined passwords via encrypted config entry #121

lefou commented Sep 27, 2019

scep client: support externally defined passwords via encrypted config entry #121

scep client: support externally defined passwords via encrypted config entry #121

Comments

lefou commented Sep 27, 2019