The following table lists the properties that can be used to configure the keystore encryption service.
They are all mandatory.
encryption.keystore.cipher-transformation-name
Type
String
Default
RSA
Description
The name of the cipher transformation which should be used for de-
& encryption. It is strongly recommended to overwrite the default
by setting this property to a more secure transformation with padding.
encryption.keystore.key-alias
Type
String
Description
Alias of the key inside the key store specified by
encryption.keystore.keystore-file-location, that
should be used for de- & encryption. The property value must not
be blank.
encryption.keystore.key-password
Type
String
Description
The password of the key, specified by
encryption.keystore.key-alias. The property value
must not be blank.
encryption.keystore.keystore-file-location
Type
String
Default
${user.home}/.cmservices/.keystore
Description
Absolute path of the Java key store. The property value must not be
blank.
encryption.keystore.keystore-password
Type
String
Description
Password of the Java key store specified by
encryption.keystore.keystore-file-location. The
property value must not be blank.
Table 4.2. Key Store Encryption Service Properties
Note
The encryption service Spring bean takes precedence over the static encryption service instance configured
using the CM_KEYSTORE_LOCATION and CM_KEYSTORE_PASSWORD_FILE_LOCATION properties.