diff options
author | Bjørn Christian Seime <bjorncs@oath.com> | 2018-06-14 17:01:02 +0200 |
---|---|---|
committer | Bjørn Christian Seime <bjorncs@oath.com> | 2018-06-14 17:01:02 +0200 |
commit | b2e3f0a1c302c95c32c57d87aafefe19ab314cd2 (patch) | |
tree | 1c7fedf21df017c9059d7ac89ba746d83015ecf2 /athenz-identity-provider-service | |
parent | 354acfce554315e6d9e556a9ac9e40050e71f085 (diff) |
Set password when creating key entry
Diffstat (limited to 'athenz-identity-provider-service')
-rw-r--r-- | athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java b/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java index 3437dea9ece..2e0cf04ae4f 100644 --- a/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java +++ b/athenz-identity-provider-service/src/main/java/com/yahoo/vespa/hosted/athenz/instanceproviderservice/AthenzSslKeyStoreConfigurator.java @@ -92,10 +92,11 @@ public class AthenzSslKeyStoreConfigurator extends AbstractComponent implements boolean isExpired = certificate.get().getNotAfter().toInstant().isBefore(minimumExpiration); if (isExpired) return Optional.empty(); + char[] password = generateKeystorePassword(); KeyStore keyStore = KeyStoreBuilder.withType(KeyStoreType.JKS) - .withKeyEntry(CERTIFICATE_ALIAS, privateKey.get(), certificate.get()) + .withKeyEntry(CERTIFICATE_ALIAS, privateKey.get(), password, certificate.get()) .build(); - return Optional.of(new KeyStoreAndPassword(keyStore, generateKeystorePassword())); + return Optional.of(new KeyStoreAndPassword(keyStore, password)); } @Override |