[
https://issues.apache.org/jira/browse/CXF-8915?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Jan Bernhardt updated CXF-8915:
-------------------------------
Description:
Similar to CXF-8837 the JweUtils only accepts RSA keys coming from a local
keystore file. RSA keys from other resources like a HSM via PKCS11 interface
are getting rejected.
The code needs some refactoring to not limit the support to local keystores.
was:
As discussed on the [mailing
list|[https://lists.apache.org/thread/95hcbjqy7z7m7qhz407y9o36gw2ql2xo],] the
current implementation within `JwsUtils` only accepts RSA keys coming from a
local keystore file. RSA keys from other resources like a HSM via PKCS11
interface are getting rejected currently for no reason.
The code needs some refactoring to not limit the support to local keystores.
> Allow P11 RSA Keys within JweUtils
> ----------------------------------
>
> Key: CXF-8915
> URL: https://issues.apache.org/jira/browse/CXF-8915
> Project: CXF
> Issue Type: Bug
> Components: JAX-RS Security
> Affects Versions: 3.3.4, 4.0.0
> Reporter: Jan Bernhardt
> Assignee: Colm O hEigeartaigh
> Priority: Minor
> Fix For: 3.6.0, 4.0.1, 3.5.6
>
>
> Similar to CXF-8837 the JweUtils only accepts RSA keys coming from a local
> keystore file. RSA keys from other resources like a HSM via PKCS11 interface
> are getting rejected.
> The code needs some refactoring to not limit the support to local keystores.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
