diff options
author | Bjørn Christian Seime <bjorn.christian@seime.no> | 2018-06-14 17:04:52 +0200 |
---|---|---|
committer | GitHub <noreply@github.com> | 2018-06-14 17:04:52 +0200 |
commit | 24a36eeaab02a86f8da2c1565c287ea2c72481bd (patch) | |
tree | f13a0196473e143320734c019bc6c0725e8c570f | |
parent | d40cfb0a0f85c5c97c1717387525ed1f92694080 (diff) | |
parent | b2e3f0a1c302c95c32c57d87aafefe19ab314cd2 (diff) |
Merge pull request #6212 from vespa-engine/bjorncs/fix-keystore-password
Set password when creating key entry
-rw-r--r-- | athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java b/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java index 3437dea9ece..2e0cf04ae4f 100644 --- a/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java +++ b/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java @@ -92,10 +92,11 @@ public class AthenzSslKeyStoreConfigurator extends AbstractComponent implements boolean isExpired = certificate.get().getNotAfter().toInstant().isBefore(minimumExpiration); if (isExpired) return Optional.empty(); + char[] password = generateKeystorePassword(); KeyStore keyStore = KeyStoreBuilder.withType(KeyStoreType.JKS) - .withKeyEntry(CERTIFICATE_ALIAS, privateKey.get(), certificate.get()) + .withKeyEntry(CERTIFICATE_ALIAS, privateKey.get(), password, certificate.get()) .build(); - return Optional.of(new KeyStoreAndPassword(keyStore, generateKeystorePassword())); + return Optional.of(new KeyStoreAndPassword(keyStore, password)); } @Override |