On 04/07/2017 07:32, Frank Taffelt wrote: > Hi Thomas, > >> By far the simplest solution is to have one keystore per private key. > > so maybe this could go into the docs section.
Updated. Will be included in the next release (not the one currently being voted on). >> I find the JSSE API tricky to navigate at the best of times so it is possible >> I have missed something. If I have, feel free to point me in the right >> direction. Better yet, provide some code that shows how to use >> KeyManagerFactory with a keystore that has multiple keys each with a >> different >> password. > > yes, i also wondered on the API of KMF having only one password on the init > method. Could creating a runtime inmemory keystore with the keyentry from the > original keystore help? I don't think that will work because you can't read the key out of the keystore. Mark --------------------------------------------------------------------- To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org For additional commands, e-mail: users-h...@tomcat.apache.org