[ https://issues.apache.org/jira/browse/SOLR-10307?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15994742#comment-15994742 ]
Shalin Shekhar Mangar commented on SOLR-10307: ---------------------------------------------- Ah ok, I see the disconnect. I didn't register on the first read that SSLConfigurations.init() puts the relevant environment variables into system properties for other classes to use. Thanks Mano. +1 to commit. > Provide SSL/TLS keystore password a more secure way > --------------------------------------------------- > > Key: SOLR-10307 > URL: https://issues.apache.org/jira/browse/SOLR-10307 > Project: Solr > Issue Type: Improvement > Security Level: Public(Default Security Level. Issues are Public) > Components: security > Reporter: Mano Kovacs > Assignee: Mark Miller > Attachments: SOLR-10307.patch, SOLR-10307.patch, SOLR-10307.patch > > > Currently the only way to pass server and client side SSL keytstore and > truststore passwords is to set specific environment variables that will be > passed as system properties, through command line parameter. > First option is to pass passwords through environment variables which gives a > better level of protection. Second option would be to use hadoop credential > provider interface to access credential store. -- This message was sent by Atlassian JIRA (v6.3.15#6346) --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@lucene.apache.org For additional commands, e-mail: dev-h...@lucene.apache.org