我想使用standalone-full.xml文件中的系统属性访问在jboss elytron中创建的凭证存储,如下所示,
<system-properties>
<property name="RSA_KEY_TEST" value="give the alias here and then access the credential store password"/>
</system-properties>
我尝试在系统属性的 value 属性内传递以下标记,但它不起作用。
<property name="RSA_KEY_TEST" value="<credential-reference store="credential-store" alias="DBPasswordCredential"/>" />
您可以在 JBoss EAP 7.4.4 及更高版本中使用加密表达式
基本上您需要创建一个秘密密钥凭证存储
/subsystem=elytron/secret-key-credential-store=initial:add(relative-to=jboss.server.config.dir, path=initial.cs)
激活处理程序
/subsystem=elytron/expression=encryption:add(resolvers=[{name=initial-resolver, credential-store=initial, secret-key=key}])
并存储秘密
/subsystem=elytron/expression=encryption:create-expression(resolver=initial-resolver, clear-text=MyPassword)
{
"outcome" => "success",
"result" => {"expression" =>"${ENC::initial-resolver:RUxZAUMQEH6CP3xXyAqYzqsC3oNayyeGH32wsdAZ8VLkkxaEmWc=}"}
}
现在你可以在系统属性中使用它了
<system-properties>
<property name="RSA_KEY_TEST" value="${ENC::initial-resolver:RUxZAUMQEH6CP3xXyAqYzqsC3oNayyeGH32wsdAZ8VLkkxaEmWc=}"/>
</system-properties>