summaryrefslogtreecommitdiffstats
path: root/athenz-identity-provider-service
diff options
context:
space:
mode:
authorBjørn Christian Seime <bjorncs@oath.com>2018-06-14 17:01:02 +0200
committerBjørn Christian Seime <bjorncs@oath.com>2018-06-14 17:01:02 +0200
commitb2e3f0a1c302c95c32c57d87aafefe19ab314cd2 (patch)
tree1c7fedf21df017c9059d7ac89ba746d83015ecf2 /athenz-identity-provider-service
parent354acfce554315e6d9e556a9ac9e40050e71f085 (diff)
Set password when creating key entry
Diffstat (limited to 'athenz-identity-provider-service')
-rw-r--r--athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java5
1 files changed, 3 insertions, 2 deletions
diff --git a/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java b/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java
index 3437dea9ece..2e0cf04ae4f 100644
--- a/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java
+++ b/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java
@@ -92,10 +92,11 @@ public class AthenzSslKeyStoreConfigurator extends AbstractComponent implements
boolean isExpired = certificate.get().getNotAfter().toInstant().isBefore(minimumExpiration);
if (isExpired) return Optional.empty();
+ char[] password = generateKeystorePassword();
KeyStore keyStore = KeyStoreBuilder.withType(KeyStoreType.JKS)
- .withKeyEntry(CERTIFICATE_ALIAS, privateKey.get(), certificate.get())
+ .withKeyEntry(CERTIFICATE_ALIAS, privateKey.get(), password, certificate.get())
.build();
- return Optional.of(new KeyStoreAndPassword(keyStore, generateKeystorePassword()));
+ return Optional.of(new KeyStoreAndPassword(keyStore, password));
}
@Override