Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-9179

OpenAM pretends to set OpenDJ cipher transformation on installation, actually does nothing

    XMLWordPrintable

    Details

    • Sprint:
      AM Sustaining Sprint 32
    • Story Points:
      2

      Description

      During installation of OpenAM with embedded DJ config store, the installation log proudly proclaims the following as one of the first entries:

      Installing OpenAM configuration store...Success RSA/ECB/OAEPWithSHA1AndMGF1Padding.
      

      Some code in com.sun.identity.setup.EmbeddedOpenDS#getSupportedTransformation carefully choses this transformation and sets it as the OPENDS_TRANSFORMATION property when installing DJ. However, from talking to the OpenDJ team to understand what this does, they can find no reference to this property anywhere and setting it to a gibberish string has no observable impact on the installation or functioning of the datastore.

      We should remove this configuration and the associated audit log entries.

        Attachments

          Activity

            People

            Assignee:
            sfraser Sam Fraser
            Reporter:
            neil.madden Neil Madden
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 2h
                2h
                Remaining:
                Remaining Estimate - 0h
                0h
                Logged:
                Time Spent - 2h
                2h