Cannot obtain keystore password from external source in vault configuration on JBoss EAP 6.
Issue
- With the password mask defined in
standalone.xml
forKEYSTORE_PASSWORD
everything works fine, but the password mask in shell script fails with :
PBOX000140: Unable to get keystore
- Below is the vault configuration and contents of shell script :
<vault>
<vault-option name="KEYSTORE_URL" value="${jboss.server.base.dir}/hello.jks"/>
<vault-option name="KEYSTORE_PASSWORD" value="{EXT}/path/to/script/{nameofscript.sh}"/>
.......
</vault>
[jboss@teste11 ~]$ cat nameofscript.sh
#!/bin/bash
echo "MASK-12345555555"
Environment
- Red Hat JBoss Enterprise Application Platform (EAP)
- 6.4
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.