Replacement for spi-truststore-file-* options? #28007
Unanswered
bodograumann
asked this question in
Q&A
Replies: 1 comment 6 replies
-
I don't think a forward looking replacement was considered for this. Can you describe why encryption is required for your public certs? Or do you have a pkcs12 file containing both public and private material? |
Beta Was this translation helpful? Give feedback.
6 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
In keycloak 24 it seems, the spi-truststore-file-* options are deprecated.
The documentation seems to read, that pkcs12 truststores are now discovered in and read from the config directory, but are "expected" to be unencrypted.
How can keycloak now handle encrypted pkcs12 stores, that were previously configured with an
spi-truststore-file-password
option?Beta Was this translation helpful? Give feedback.
All reactions