[LPS-72766] Keytool added certificates not found by KeyStoreCredentialResolver - Liferay Issues

XML

Word

Printable

Details

Type: Bug
Status: Closed
Resolution: Fixed
Affects Version/s: 6.2.10 EE GA1, 7.0.X EE
Fix Version/s: 7.0.X EE
Component/s: Application Security > SAML
Labels:
- liferay-saml-2.0-provider-3.1.0

Fix Priority:
3
Git Pull Request:
https://github.com/brianchandotcom/liferay-portal-ee/pull/17359

Description

The FileSystemKeyStoreManagerImpl component only reads the keystore.jks when it activates. Consequently if using an existing X.509 certificate for SAML, you need to somehow cause this component to reactivate. For example by re-saving the referenced SamlConfiguration via System Settings or by a portal restart. This is not a very good UX.

Additionally, if you add your certificate via KeyTool and then press "Save" on the "General" tab of the SAML Admin Portlet (without doing the above) then your certificate is removed from the keystore.

Attachments

Activity

People

Assignee:: Brian Lee

Reporter:: id30721

Participants of an Issue:: Brian Lee, Carlos Sierra, id30721, Stian Sigvartsen

Recent user:: Kiyoshi Lee

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 25/May/17 8:00 AM

Updated:: 14/Dec/17 12:45 AM

Resolved:: 20/Jun/17 1:34 AM

Days since last comment:: 5 years, 41 weeks, 1 day ago

Packages

Version	Package
7.0.X EE