Bug 1164299

Summary: tomcat.security.[keystore,truststore].password properties not getting encrypted/obfuscated
Product: [JBoss] JBoss Operations Network Reporter: Garik Khachikyan <gkhachik>
Component: AgentAssignee: Stefan Negrea <snegrea>
Status: CLOSED CURRENTRELEASE QA Contact: Mike Foley <mfoley>
Severity: urgent Docs Contact:
Priority: unspecified    
Version: JON 3.3.0CC: mkoci, spinder
Target Milestone: CR03   
Target Release: JON 3.3.0   
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2014-12-11 14:01:16 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Garik Khachikyan 2014-11-14 15:25:59 UTC 
Description of problem:
reference: https://bugzilla.redhat.com/show_bug.cgi?id=1070262#c56

Version-Release number of selected component (if applicable):
JON 3.3.GA

How reproducible:
always

Steps to Reproduce:
1.see the referenced comment.
2.
3.

Actual results:
2 properties from "~/.java/.userPrefs/rhq-server/default/prefs.xml" not getting masked:
---
rhq.server.tomcat.security.keystore.password=secret
rhq.server.tomcat.security.truststore.password=secret


Expected results:
_all_ sensitive password data should get encrypted/obfuscated

Additional info:
Comment 2 Simeon Pinder 2014-11-18 04:14:15 UTC 
Moving this to MODIFIED with commit :f8e5a9ec4000 for JON 3.3 CR03 build. Assigning to Stefan.
Comment 3 Simeon Pinder 2014-11-18 04:27:29 UTC 
Moving to ON_QA as available to test with latest brew build:
https://brewweb.devel.redhat.com//buildinfo?buildID=399113
Comment 5 Garik Khachikyan 2014-11-19 15:32:05 UTC 
# VERIFIED

works!

both files on server side got masked. A hint (and a good note for me to remember) - ~/.java/.userPrefs/rhq-server/default/prefs.xml gets "fixed" with masking passwords once the server starts :) and it does the job (masks all passwords).

thanks.