...
Code Block | ||||||
---|---|---|---|---|---|---|
| ||||||
{ "file": "${ceptor.home}/config/x509/issuer/certissuer.pfx", "provider": "BC", "type": "PKCS12", "password": "{encoded}96E1FAF9F9578720", "alias.privkey": "abc", "alias.cert": "public", "password.per.alias": [], "privatekey": "-----BEGIN PRIVATE KEY-----\nxxxxxxxx\n-----END PRIVATE KEY-----", "certificate": "-----BEGIN CERTIFICATE----\nxxxxxxxxxxxxxx\n-----END CERTIFICATE----", "publickey": "-----BEGIN RSA PUBLIC KEY----\nxxxxxxxxxxxxxx\n-----END RSA PUBLIC KEY----", "password.per.alias": [ "public=anotherpassword", "supersecret=passw0rd" ], "certificates": [ "${ceptor.home}/config/extra.cer", "${ceptor.home}/config/other.cer", "-----BEGIN CERTIFICATE----\nxxxxxxxxxyyyyyyyyxxxxx\n-----END CERTIFICATE----" ], "entries": [ { "name": "Name used as alias", "privatekey": "PEM encoded RSA private key - possibly encrypted/obfusciated using password encryption - used to specify keys/certs only via configuration instead of requiring them to be loaded from external files", "certificates": [ "PEM encoded certificate, or filename to load certificate from", "additional PEM encoded certificate or filename", ".... all certificates are combined into a single entry within the keystore - so one certificate chain" ] "certificate": "Ignored if 'certificates' is present - can otherwise contain a certificate if present, can either be PEM encoded, or filename (or semicolon separated filenames) of files to load certificates from", "publickey": "Can contain a public key if present, can either be PEM encoded, or filename (or semicolon separated filenames) of files to load certificates from" } ] } |
User interface configuration
...
Default: None
JSON key is certificate
Public key
Allows you to provide the public key directly - this is only available for keystores used within OpenID Connect / JWT token configurations.
Note: Requires Ceptor v6.5.11+
Default: None
JSON key is publickey
Certificates
Provide a list of filenames or certificates directly within the configuration.
...