AFAIK that's how it worked - same password for the private key and the key store..
But reading your mail, it says.. "However, if the passwords of all the keys were the same, it worked correctly. The password of the key store was different from the password(s) of the keys in both scenarios. " Does that mean when you have multiple private keys with the same password - but a different password for the key sore, it worked..? Thanks & regards, -Prabath On Wed, Jan 10, 2018 at 3:22 AM, Pubudu Fernando <pubu...@wso2.com> wrote: > Hi All, > > We were looking into getting multiple keys with unique passwords in the > same key store to work (for the HTTP transport [1]). But when the passwords > were unique to each key, it resulted in an UnrecoverableKeyException. > However, if the passwords of all the keys were the same, it worked > correctly. The password of the key store was different from the password(s) > of the keys in both scenarios. > > Checked several Stackoverflow questions related to this [2], [3], [4], [5] > and pretty much every answer to this was to use the same password for both > the key store and the key. > > Tomcat also seem to follow this approach of keeping the store and key > passwords the same [6]. > > Does anyone know whether this can or cannot be done for certain? > > If this cannot be done, are we also going to keep following the Tomcat's > (and others') approach of using the same password for both key store and > the key? > > [1] - https://github.com/wso2/transport-http/blob/master/ > components/org.wso2.transport.http.netty/src/main/java/org/ > wso2/transport/http/netty/common/ssl/SSLHandlerFactory.java > > [2] - https://stackoverflow.com/questions/35709433/java- > keystore-with-multiple-keys-and-different-passwords > > [3] - https://stackoverflow.com/questions/15967650/caused-by- > java-security-unrecoverablekeyexception-cannot-recover-key?noredirect= > 1&lq=1 > > [4] - https://stackoverflow.com/questions/1321557/can-not-get- > key-from-keystore > > [5] - https://stackoverflow.com/questions/2889238/keystore- > change-passwords/2889605 > > [6] - https://tomcat.apache.org/tomcat-6.0-doc/ssl-howto.html# > Prepare_the_Certificate_Keystore > > Thanks. > > -- > Best Regards, > > *Pubudu Fernando* > Software Engineer > WSO2 (www.wso2.com) > m: +94 77 888 2543 <077%20888%202543> > > <https://lk.linkedin.com/in/pubuduf> <http://blog.pubudu.xyz/> > <https://github.com/pubudu91> > <http://stackoverflow.com/users/4329912/pubudu> > > -- Thanks & Regards, Prabath Twitter : @prabath LinkedIn : http://www.linkedin.com/in/prabathsiriwardena Mobile : +1 650 625 7950 Blog: http://blog.facilelogin.com Vlog: http://vlog.facilelogin.com
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev
