Securing plaintext passwords like db-password and https-key-store-password in keycloak.conf #11770
risver1997
started this conversation in
Archive
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Hi,
We are using Keycloak 17.0.0 as our Authentication server, but while configuring the db-password and https-key-store-password configuration options in the keycloak.conf, we can see these passwords are kept in plaintext in this file.
As it could be a security risk to expose these credentials in plaintext, we were wondering if there exists any way or any configuration option to encrypt and store these encrypted passwords in the keycloak.conf file.
We have not found any configuration to do this so far. Any suggestions on how to encrypt and use these passwords in encrypted form?
Beta Was this translation helpful? Give feedback.
All reactions