-
1. Re: How to encrypt passwords in wildfly-config.xml
dlofthouse Jun 25, 2019 9:24 AM (in response to valsaraj007)1 of 1 people found this helpfulYes there is, we have recently identified that we are missing credential store documentation so I am actually in the process of writing that today, once section is going to be on how to use the credential store within the wildfly-config.xml so I will let you know here once my pull request is ready.
-
2. Re: How to encrypt passwords in wildfly-config.xml
valsaraj007 Jun 25, 2019 10:48 AM (in response to dlofthouse)Thanks Darran dlofthouse
Please update if any suggestion for this issue:
Programmatic remote ejb call issue with WildFly Naming Client?
-
3. Re: How to encrypt passwords in wildfly-config.xml
dlofthouse Jul 2, 2019 1:46 PM (in response to dlofthouse)The following pull request contains more comprehensive documentation for the credential store - [WFLY-11101] Add documentation covering the use of the credential store. by darranl · Pull Request #12414 · wildfly/wild…
For the specific question of how to use the credential store within the wildfly-config.xml the following is a configuration example: -
<?xml version="1.0" encoding="UTF-8"?>
<configuration>
<authentication-client xmlns="urn:elytron:1.0">
<credential-stores>
<credential-store name="mycredstore">
<attributes>
<attribute name="keyStoreType" value="JCEKS" />
<attribute name="location" value="standalone/configuration/mycredstore.cs" />
</attributes>
<protection-parameter-credentials>
<clear-password password="StorePassword" />
</protection-parameter-credentials>
</credential-store>
</credential-stores>
<authentication-rules>
<rule use-configuration="default" />
</authentication-rules>
<authentication-configurations>
<configuration name="default">
<sasl-mechanism-selector selector="DIGEST-MD5" />
<providers>
<use-service-loader/>
</providers>
<set-user-name name="User" />
<credentials>
<credential-store-reference store="mycredstore" alias="User" />
</credentials>
</configuration>
</authentication-configurations>
</authentication-client>
</configuration>