KeyStore
The configuration for a Java KeyStore, which stores cryptographic private keys and public key certificates.
Usage
{
"name": name,
"type": "KeyStore",
"config": {
"url": configuration expression<uri string>,
"passwordSecretId": configuration expression<secret-id>,
"type": configuration expression<string>,
"secretsProvider": SecretsProvider reference
}
}Properties
"url": configuration expression<uri string>, required-
URL to the keystore file.
See also Expressions.
"passwordSecretId": configuration expression<secret-id>, optional-
The secret ID of the password required to read private keys from the KeyStore.
If the KeyStore is used as a truststore to store only public key certificates of peers and no password is required to do so, then you do not have to specify this field.
Default: No password is set.
See also Expressions.
"type": configuration expression<string>, optional-
The secret store type.
"secretsProvider": SecretsProvider reference, optional-
The SecretsProvider to query for the keystore password. For more information, see SecretsProvider.
Default: The route’s default secret service. For more information, see Default Secrets Object.
Example
The following example configures a KeyStore that references the Java KeyStore
file $HOME/keystore.jks. The KeyStore password is provided by a Java
system property or environment variable, and retrieved by the
SystemAndEnvSecretStore. By default, the password value must be base64-encoded.
{
"name": "MyKeyStore",
"type": "KeyStore",
"config": {
"url": "file://${env['HOME']}/keystore.jks",
"passwordSecretId": "keystore.secret.id",
"secretsProvider": "SystemAndEnvSecretStore"
}
}