CreateShortTermKeyStoreValve

Generates a key pair that only lives within the pipe runtime.

The generated certificate and private key will be added to a key store where the id is added to item property keyStoreId.

Note: Generated key pair will be of type RSA and size 2048. The certificate will be valid for 180 days by default, if not configured.

Properties

Name Description Default value Mandatory Supports property expansion
subjectKeyParamater The subject to use when generating a keystore. Yes Yes
caTemplateKeyParamater Reference to internal CA. Yes No
keyUsage What extensions to add in the certificate formatted as a string array. For more information, view https://tools.ietf.org/html/rfc5280#section-4.2.1.3. Yes No
notAfterNumberOfDays Certifiate validity length in number of days. 180 No No

Example Configuration

{
    "name" : "CreateShortTermKeyStoreValve",
    "enabled" : "true",
    "config" : {
        "subjectKeyParamater" : "cn={{item.uid}},O=org",
        "caTemplateKeyParamater" : "signca",
        "notAfterNumberOfDays" : "365",
        "keyUsage" : [ "true", "true" ]
    }
}

Requirements

One item must be present.