wood burning stoves 2.0*
The moose likes Tomcat and the fly likes how to pass the keystorePass as encrypted password in server.xml for https configuration Big Moose Saloon
  Search | Java FAQ | Recent Topics | Flagged Topics | Hot Topics | Zero Replies
Register / Login


Win a copy of Java 8 in Action this week in the Java 8 forum!
JavaRanch » Java Forums » Products » Tomcat
Bookmark "how to pass the keystorePass as encrypted password in server.xml for https configuration" Watch "how to pass the keystorePass as encrypted password in server.xml for https configuration" New topic
Author

how to pass the keystorePass as encrypted password in server.xml for https configuration

Anantha Reddy
Greenhorn

Joined: Jun 24, 2008
Posts: 12
Hi All

how to pass the keystorePass as encrypted password in server.xml for https configuration?
ex: this is my server.xml

<Connector SSLEnabled="true" scheme="https" secure="true" port="8443"
protocol="HTTP/1.1" clientAuth="false" keystoreFile="C:\ServerDir\certs\CH_Keystore.jks" keystorePass="checpix"
keyAlias="checpix"/>

i want to pass the 'keystorePass' attribtue value as 'encrypted', but its a server or jvm level change require i think, bcz of these keystore
are stored in server level only, not in code level.

is there any way to send encrypted pwd instead of sending plain text password?
or
is there any way to send the keystore file and password through jvm level setting?

Thanks
Ananth
Tim Holloway
Saloon Keeper

Joined: Jun 25, 2001
Posts: 15665
    
  15

I don't have a clue what you are asking. You don't "pass" the keystore password, you specify it on the server.xml Connector element for TLS. The value is not encrypted because the server.xml file is not something that non-authorized users can look at. At least it isn't if you are following even the most basic security practices for a secure shop.

Customer surveys are for companies who didn't pay proper attention to begin with.
 
I agree. Here's the link: http://aspose.com/file-tools
 
subject: how to pass the keystorePass as encrypted password in server.xml for https configuration
 
Similar Threads
Read client certificate in Tomcat Server
enable https on jboss 5
http to https redirect jboss 5.0.1 GA
X509 Authentication with Tomcat over SSL
Read client certificate in a Servlet