Skip to content

Use Spring SSL bundle in SAML2 signing #15366

New issue
New issue
Closed
Closed
Use Spring SSL bundle in SAML2 signing#15366
Assignees
jzheaux
Labels
in: configAn issue in spring-security-configstatus: declinedA suggestion or change that we don't feel we should currently applytype: enhancementA general enhancement
@gertvv

Description

@gertvv
gertvv
opened on Jul 5, 2024

Expected Behavior

When acting as a SAML2 client, allow the lovely Spring SSL bundles to be used to specify the certificates in configuration. For example, by setting spring.security.saml2.relyingparty.registration.<reg-id>.signing.credentials.bundle.

Current Behavior

The private-key-location and certificate-key-location must be set separately and don't seem to have useful functionality offered by the SSL bundles, such as loading from a keystore and decrypting the private key.

Context

I'm looking for good ways to inject these secrets into the configuration and ideally without decrypting the key file on disk.

Metadata

Metadata

Assignees

Labels

in: configAn issue in spring-security-configstatus: declinedA suggestion or change that we don't feel we should currently applytype: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions