Uploaded image for project: 'ZZZ-WSO2 Application Server '
  1. ZZZ-WSO2 Application Server
  2. WSAS-1917

Cipher tool needs to properly support encrypting xml attribute elements

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Highest
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 5.3.0
    • Component/s: None
    • Labels:
      None
    • Severity:
      Blocker
    • Estimated Complexity:
      Moderate

      Description

      There is an issue with current support for encrypting xml attributes. Once we configure a file (e.g. : catalina-server.xml) using cipher-tool, we can see that the secret alias is being added to it. But the value of keystorePass still remains as "wso2carbon". This should get changed to "password".

      <Connector SSLEnabled="true" URIEncoding="UTF-8" acceptCount="200" acceptorThreadCount="2" bindOnInit="false" clientAuth="false" compressableMimeType="text/html,text/javascript,application/x-javascript,application/javascript,application/xml,text/css,application/xslt+xml,text/xsl,image/gif,image/jpg,image/jpeg" compression="on" compressionMinSize="2048" connectionUploadTimeout="120000" disableUploadTimeout="false" enableLookups="false" keystoreFile="$

      {carbon.home}

      /repository/resources/security/wso2carbon.jks" keystorePass="wso2carbon" maxHttpHeaderSize="8192" maxKeepAliveRequests="200" maxThreads="250" minSpareThreads="50" noCompressionUserAgents="gozilla, traviata" port="9443" protocol="org.apache.coyote.http11.Http11NioProtocol" scheme="https" secure="true" server="WSO2 Carbon Server" sslProtocol="TLS" svns:secretAlias="Server.Service.Connector.keystorePass">password</Connector>

      The actual reason is that this is the only file (may be the first one), where we need to encrypt a value of an xml attribute. Other config files, we had to encrypt the value of the xml node element.

        Attachments

          Activity

            People

            • Assignee:
              niranjan@wso2.com Niranjan Karunanandham
              Reporter:
              kishanthan@wso2.com Kishanthan Thangarajah
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: