Validation of keyring url is incorrect #3926

pj892031 · 2024-07-26T13:10:18Z

zowe-install-packaging/schemas/zowe-yaml-schema.json

Line 807 in 07b929e

"pattern": "^safkeyring:\/\/.*"

The validation assumes that the protocol is always safkeyring. It is not true since Java 11, it should allow at least safkeyringjce. Anyway, there are also other types, so the proper validation should be like ^safkeyring[a-z]*:\/\/.

There are workarounds:

disable validation
use systems environment such as SERVER_SSL_KEYRING to provide the correct value
change start.sh script

The text was updated successfully, but these errors were encountered:

1000TurquoisePogs · 2024-07-31T15:16:38Z

I confirm that zss and app-server both tolerate safkeyring.*
zss checks for "safkeyring.*://"
app-server checks for "safkeyring.*"
So, a schema change here and use of java 11 names wont break them

MarkAckert self-assigned this Aug 1, 2024

MarkAckert mentioned this issue Aug 1, 2024

update safkeyring schema to allow safkeyringjce:// #3928

Merged

Martin-Zeithaml added enhancement New feature or request config labels Aug 2, 2024

Martin-Zeithaml mentioned this issue Sep 4, 2024

Update pattern for new safkeyring URLs in Java 11. #3475

Closed

5 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Validation of keyring url is incorrect #3926

Validation of keyring url is incorrect #3926

pj892031 commented Jul 26, 2024

1000TurquoisePogs commented Jul 31, 2024 •

edited

Loading

Validation of keyring url is incorrect #3926

Validation of keyring url is incorrect #3926

Comments

pj892031 commented Jul 26, 2024

1000TurquoisePogs commented Jul 31, 2024 • edited Loading

1000TurquoisePogs commented Jul 31, 2024 •

edited

Loading