Reputation: 155
What is the difference between keyStorePassword and keyManagerPassword in Jetty?
I am looking at SSL for Jetty: http://wiki.eclipse.org/Jetty/Reference/SSL_Connectors
There are properties for both keyStorePassword and keyManagerPassword. I suppose the keyManagerPassword is used by a Javax KeyManager, and so is a password for recovering keys from the key store?
So do keyStorePassword and keyManagerPassword then generally have the same value?
Upvotes: 5
Views: 8056
Answers (2)
Reputation: 76
Keymanagerfactory does have a password.
hmmm it is a little history and evolution in these APIs and they could perhaps be made clearer.
The keyManagerPassword is passed as the password arg to KeyManagerFactory.init(...) If there is no keymanagerpassword, then the keystorepassword is used instead. If there is no trustmanager set, then the keystore is used as the trust store and the keystorepassword is used as the truststore password.
Upvotes: 6
Reputation: 310957
keyManagerPassword looks like a misfeature. It is the keystore that has the password, not the KeyManager. There's no reference to a key manager password in the Javadoc for the classes concerned.
Upvotes: 1
Related Questions
- Where is the best location for the keystore in Jetty 10
- Keystore password for Jetty 7.0 SSL configuration
- Configuring SSL on Jetty
- Configuring generated keystore in jetty ssl file
- Configuring Jetty with SSL/TLS and Keystore
- Difference between KeyStore and KeyManager/TrustManager
- setting ssl keystore at runtime in Jetty
- Difference between TrustManager and KeyManager
- How can I make Jetty 9 ignore keypass while accesing keystore?
- How to specify the key password using javax.net.ssl?