[midPoint] midPoint Keystore Encryption Key Alias and XML Cipher Configuration

[Haywood, Jeremiah]

Does anyone know if there is a jvm argument that allows the encryption key
alias and xml cipher to be set? I  haven't been able to find anything
referencing it in the container docs
<https://docs.evolveum.com/midpoint/install/docker/dockerized-midpoint/> .
It is configurable in the config.xml under midpoint home but trying to pass
all config options in the jvm arguments if possible.

 

config.xml snippet:

<keystore>
    <keyStorePath>${midpoint.home}/keystore.jceks</keyStorePath>
    <keyStorePassword>keystorepass</keyStorePassword>
    <encryptionKeyAlias>alias</encryptionKeyAlias>
    <xmlCipher>cipher</xmlCipher>
</keystore>

 

Current jvm command parameters used in startup script:

 

-Dfile.encoding

-Dmidpoint.home

-Dloader.path

-Dmidpoint.repository.database

-Dmidpoint.repository.jdbcUsername

-Dmidpoint.repository.jdbcPassword_FILE

-Dmidpoint.repository.jdbcUrl

-Dmidpoint.repository.hibernateHbm2ddl

-Dmidpoint.repository.missingSchemaAction

-Dmidpoint.repository.schemaVersionIfMissing

-Dmidpoint.repository.schemaVariant

-Dmidpoint.repository.initializationFailTimeout

-Dmidpoint.keystore.keyStorePassword_FILE

-Dspring.profiles.active

-Dauth.logout.url

-Dauth.sso.header

-Dserver.tomcat.ajp.enabled

-Dserver.tomcat.ajp.port

-Dlogging.path

 

 

Thank you,

 

Jeremiah Haywood

Identity and Access Management Administrator 

Office of Technology Solutions | Illinois State University

Phone Number (309) 438-3829

 

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20210528/73b9b40d/attachment.htm>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6756 bytes
Desc: not available
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20210528/73b9b40d/attachment.bin>