Thanks Neil
This is what I thought/feared.
To me, at least the webconsole doesn't need a plaintext password and can
use the same hashing mechanism the Unices use. Carsten?
The keystore password would be more difficult.
On 22/04/16 23:34, Neil Bartlett wrote:
This is a tricky one… the components need to receive the password in plaintext,
and FileInstall does not support decryption.
You could build a management agent that supports reading encrypted data, either
at the individual field level or over the whole configuration file. You still
have the problem of how to supply the decryption key, and this very much
depends on your specific requirements. For example the app could prompt for a
password at startup time.
Neil
On 22 Apr 2016, at 09:00, Antonio Sanso <[email protected]> wrote:
hi,
I would actually have the same question?
Is there anything can be done here ? If not there is any plan to improve this?
I might try to help out in this area providing a patch…
Anyone :)?
regards
antonio
On Apr 20, 2016, at 5:07 PM, Ferry Huberts <[email protected]> wrote:
Hi
I use FileInstall to push config into ConfigAdmin.
Now for Jettry and WebConsole there are plaintext passwords in there and I
could not find how to avoid that.
Is there a way to avoid plaintext password?
Below is an example.
org.apache.felix.http.cfg: org.apache.felix.https.keystore.password=mypassword
org.apache.felix.webconsole.internal.servlet.OsgiManager.cfg:
password=mypassword
--
Ferry Huberts
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
--
Ferry Huberts
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
