Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Keystore has to be read write #17

Closed
patrickvanamstel opened this issue Dec 1, 2015 · 2 comments
Closed

Keystore has to be read write #17

patrickvanamstel opened this issue Dec 1, 2015 · 2 comments
Assignees
@phax

Comments

@patrickvanamstel
Copy link

When sending the message the encryption is done by a private key residing in a keystore.

The as2-lib needs this keystore to be writeable. In a production environment this is not
acceptable for 2 reasons.

  • Security wise
  • Keystore if written to can be corrupted.

Please make a keystore as a copy in the /tmp folder or move the keystore to memory
@phax phax self-assigned this Dec 1, 2015
@phax
Copy link
Owner

phax commented Dec 1, 2015

Thanks for reporting this issue.
It is already fixed in verison 2.2.5.
To enable this, set the attribute autosave of the PKCS12CertificateFactory to false. When using the AS2ClientSettings you can use the method setSaveKeyStoreChangesToFile (false) instead. Hth.

@phax phax closed this as completed Dec 1, 2015
@phax
Copy link
Owner

phax commented Dec 1, 2015

When using the as2-peppol-client 1.0.4 (also new release) you can also use AS2ClientBuilder.setSaveKeyStoreChangesToFile(false)

phax added a commit that referenced this issue Feb 23, 2021
@phax
Added reloadKeyStore; ##17
2c455d0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@phax phax

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@phax @patrickvanamstel