Re: [glassfish-dev] Password Alias encrypted storage

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

Re: [glassfish-dev] Password Alias encrypted storage

From: "Steve Millidge (Payara)" <steve.millidge@xxxxxxxxxxx>
Date: Thu, 22 Apr 2021 08:23:20 +0000
Accept-language: en-GB, en-US
Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=payara.fish; dmarc=pass action=none header.from=payara.fish; dkim=pass header.d=payara.fish; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=LmoNH3FCq4JjIzo5Szin1IkUVwEb4HhoOn40vehiLEo=; b=UYxOTlsUsB6AA2gbQUJ+saB6xQxlJfT8mNVackxeHe/rFgkJy28aEEmwB7PxPnGS1j6zyy6DqUWSt/oMnfaKEvFI3xbzYJ7OwY0oEgKN9NSkOZipFvOspLpZQP0RRZNgPIA8U5634abI+uOApGutX6jCvdZVDgV8HKjDyLQRVrGzLi34V5QbIO5+UZhgOeJfjfSn/0zEid/ocifgPr5n8ZuqEgnj6kH3AyoY4EB61EM4CJyPi6OsD//7J2/K5KWHmkYPs0xD/Z0TgQAvtKGybJmCtDON5FEAl4/3IvuAjpqmVgZO9azqU+p7zLhpMcAEgybuBI4Ny0VsDvjCekYdew==
Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=MYfzRyTcIRvgrdH8OmmiW/e9etGuFXmL38birLZKotQDjadjpKY1ew4yZCHXerahNo0Kwa8KTDQJqxWVKzkCXkE/IC8iIFal6o0gSWkwIo4pCF0Paoq3lw8ZozZf3JHHfI95zi2W0QpzuhXMrrJkTDsanfVtBl+yYBIpnqoFdTZkZVcCvg9WzDP0KEpWmHVeRPcHu6BmUmDRTbxll/RsH9oqIvCUz0l0puAqWk5Ugk/oO/obhK/ZmNO+H07Xt4P5pMoPa9OciT0yLcjRB+5wQHMdfd+9WMtUbg+t1L6oA9Q9RkLmN1/b/3zeVQRJve48AIYLKL5JtBxzk8uygMS7pw==
Delivered-to: glassfish-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/glassfish-dev/>
List-help: <mailto:glassfish-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/glassfish-dev>, <mailto:glassfish-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/glassfish-dev>, <mailto:glassfish-dev-request@eclipse.org?subject=unsubscribe>
Thread-index: Adc2VWIRVeDly+SsTQCUbQ5HUZgaTQA+z5Lw
Thread-topic: [glassfish-dev] Password Alias encrypted storage

Hi Chris,

Quick answer on where the aliases are stored. They are stored in the KeyStore used in the domain. I don’t know the encryption algorithm off the top of my head but it uses a standard JKS keystore.

Steve

From: glassfish-dev <glassfish-dev-bounces@xxxxxxxxxxx> On Behalf Of christopher.r.prince@xxxxxxxxx
Sent: 21 April 2021 15:45
To: glassfish-dev@xxxxxxxxxxx
Subject: [glassfish-dev] Password Alias encrypted storage

Sorry for the random question from a new subscriber; hopefully, this is a quick question.

Where is the Password Aliases stored on disk and how are they encrypted?

I am filling out some security documentation for a project, and I wasn’t able to find it in the GF documentation. I started tracing the source code but I’m a bit short on time.

Thanks

Chris

References:
- [glassfish-dev] Password Alias encrypted storage
  - From: christopher.r.prince

Prev by Date: [glassfish-dev] Password Alias encrypted storage
Next by Date: Re: [glassfish-dev] [External] : Re: Push to GlassFish site/gh-pages branch isn't working :-(
Previous by thread: [glassfish-dev] Password Alias encrypted storage
Next by thread: [glassfish-dev] Start CCR for Eclipse GlassFish 6.1?
Index(es):
- Date
- Thread

Breadcrumbs