红帽全球峰会32.2. 使用 Keystore Vault
您可以使用 Quarkiverse File Vault 扩展来存储凭据作为密钥存储文件,并使用 文件 方法使用带有流程实例迁移(PIM)Keystore Vault 的密钥存储文件。有关 Quarkiverse File Vault 扩展的更多信息,请参阅 Quarkiverse File Vault。有关使用 KeyStore Vault 的更多信息,请参阅在 GitHub 上使用 Keystore Vault。如需有关凭证置备的更多信息,请参阅 Quarkus 文档中的 Credentials Provider 部分。
注意
您只能对 PIM 配置使用数据库和 KIE 服务器相关凭证。
流程
要在 PIM Keystore Vault 的新密钥存储文件中添加密码,请使用
keytool命令。例如:keytool -importpass -alias pimdb -keystore pimvault.p12 -storepass password -storetype PKCS12 keytool -importpass -alias kieserver -keystore pimvault.p12 -storepass password -storetype PKCS12 keytool -importpass -alias cert -keystore pimvault.p12 -storepass password -storetype PKCS12 keytool -importpass -alias keystore -keystore pimvault.p12 -storepass password -storetype PKCS12 keytool -importpass -alias truststore -keystore pimvault.p12 -storepass password -storetype PKCS12
$ keytool -importpass -alias pimdb -keystore pimvault.p12 -storepass password -storetype PKCS12 $ keytool -importpass -alias kieserver -keystore pimvault.p12 -storepass password -storetype PKCS12 $ keytool -importpass -alias cert -keystore pimvault.p12 -storepass password -storetype PKCS12 $ keytool -importpass -alias keystore -keystore pimvault.p12 -storepass password -storetype PKCS12 $ keytool -importpass -alias truststore -keystore pimvault.p12 -storepass password -storetype PKCS12Copy to Clipboard Copied! Toggle word wrap Toggle overflow 配置 PIM Keystore Vault 以使用密钥存储文件。例如:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow 配置您的应用,以使用 vault 中的凭据。例如:
Copy to Clipboard Copied! Toggle word wrap Toggle overflow 要使用配置的凭据启动 PIM,将凭证指定为环境变量或系统属性。例如:
作为一个环境变量:
VAULT_STOREPASSWORD=mysecret java -jar quarkus-app/quarkus-run.jar
VAULT_STOREPASSWORD=mysecret java -jar quarkus-app/quarkus-run.jarCopy to Clipboard Copied! Toggle word wrap Toggle overflow 作为系统属性:
java -Dvault.storepassword=password -jar quarkus-app/quarkus-run.jar
java -Dvault.storepassword=password -jar quarkus-app/quarkus-run.jarCopy to Clipboard Copied! Toggle word wrap Toggle overflow
'%20d='M201.5%20305.5c-13.8%200-24.9-11.1-24.9-24.6%200-13.8%2011.1-24.9%2024.9-24.9%2013.6%200%2024.6%2011.1%2024.6%2024.9%200%2013.6-11.1%2024.6-24.6%2024.6zM504%20256c0%20137-111%20248-248%20248S8%20393%208%20256%20119%208%20256%208s248%20111%20248%20248zm-132.3-41.2c-9.4%200-17.7%203.9-23.8%2010-22.4-15.5-52.6-25.5-86.1-26.6l17.4-78.3%2055.4%2012.5c0%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.3%2024.9-24.9s-11.1-24.9-24.9-24.9c-9.7%200-18%205.8-22.1%2013.8l-61.2-13.6c-3-.8-6.1%201.4-6.9%204.4l-19.1%2086.4c-33.2%201.4-63.1%2011.3-85.5%2026.8-6.1-6.4-14.7-10.2-24.1-10.2-34.9%200-46.3%2046.9-14.4%2062.8-1.1%205-1.7%2010.2-1.7%2015.5%200%2052.6%2059.2%2095.2%20132%2095.2%2073.1%200%20132.3-42.6%20132.3-95.2%200-5.3-.6-10.8-1.9-15.8%2031.3-16%2019.8-62.5-14.9-62.5zM302.8%20331c-18.2%2018.2-76.1%2017.9-93.6%200-2.2-2.2-6.1-2.2-8.3%200-2.5%202.5-2.5%206.4%200%208.6%2022.8%2022.8%2087.3%2022.8%20110.2%200%202.5-2.2%202.5-6.1%200-8.6-2.2-2.2-6.1-2.2-8.3%200zm7.7-75c-13.6%200-24.6%2011.1-24.6%2024.9%200%2013.6%2011.1%2024.6%2024.6%2024.6%2013.8%200%2024.9-11.1%2024.9-24.6%200-13.8-11-24.9-24.9-24.9z'/%3e%3c/svg%3e){kind=small}