Story #15675: Migrate dev keystores from jks to p12 after full rewrite of pki scripts.

Author: GiooDev

api/api-archive-search/archive-search/src/main/resources/application-dev.yml

@@ -25,10 +25,10 @@ server:
   host:
   port: 8089
   ssl:
-    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/server/archive-search/keystore_archive-search.jks
+    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_archive-search.p12
     key-store-password: changeme
     key-password: changeme
-    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
     trust-store-password: changeme
     client-auth: want
     enabled-protocols: TLSv1.2,TLSv1.3
@@ -53,12 +53,11 @@ archive-search:
     secure: true
     ssl-configuration:
       truststore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
         key-password: changeme
       keystore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/archive-search/keystore_archive-search.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/keystore_archive-search.p12
         key-password: changeme
-        type: JKS
       hostname-verification: false
 
 # Jaeger

api/api-archive-search/archive-search/src/test/resources/application.yml

@@ -24,12 +24,11 @@ archive-search:
     secure: true
     ssl-configuration:
       truststore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
         key-password: changeme
       keystore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/server/archive-search/keystore_archive-search.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_archive-search.p12
         key-password: changeme
-        type: JKS
       hostname-verification: false
 
 swagger:

api/api-collect/collect/src/main/resources/application-dev.yml

@@ -25,10 +25,10 @@ server:
   host:
   port: 8090
   ssl:
-    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/server/collect/keystore_collect.jks
+    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_collect.p12
     key-store-password: changeme
     key-password: changeme
-    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
     trust-store-password: changeme
     client-auth: want
     enabled-protocols: TLSv1.2,TLSv1.3
@@ -51,12 +51,11 @@ collect:
     secure: true
     ssl-configuration:
       truststore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
         key-password: changeme
       keystore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/collect/keystore_collect.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/keystore_collect.p12
         key-password: changeme
-        type: JKS
       hostname-verification: false
 
 # Jaeger

api/api-gateway/src/main/resources/application-dev.yml

@@ -1,11 +1,11 @@
 server:
   port: 8070
   ssl:
-    key-store: ../../dev-deployment/environments/keystores/vitamui-services/server/api-gateway/keystore_api-gateway.jks
+    key-store: ../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_api-gateway.p12
     key-store-password: changeme
     key-password: changeme
     client-auth: need
-    trust-store: ../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+    trust-store: ../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
     trust-store-password: changeme
   max-http-request-header-size: 16KB
 

api/api-iam/iam/README.md

@@ -1,4 +1,6 @@
-# Presentation
+# API-IAM
+
+## Presentation
 
 This module is a set of REST/JSON web services to perform CRUD operations on the business models:
 
@@ -9,41 +11,37 @@ This module is a set of REST/JSON web services to perform CRUD operations on the
 - profiles
 - users.
 
-
-# Run the web services
+## Run the web services
 
 ```shell
 mvn spring-boot:run
 ```
 
-# Provisioning
+## Provisioning
 
-The users can be provided by a tier service
+The users can be provided by a tier service.
 
 To enable this function, you must configure an external identity provider with the property autoprovisioning set to true.
 
-At the module level, you must add properties to do the mapping between the identity provider and the webservice to call
-
-Example : **application.yml**
-
-``` 
-    provisioning-client:
-        identity-providers:
-            - idp-identifier: system_idp
-              uri: https://localhost:8090/provisioning/v1/users
-              client:
-                secure: true
-                ssl-configuration:
-                    keystore:
-                    key-path: src/main/config/keystore_provisioning-users.jks
-                    key-password: changeme
-                    type: JKS
-                truststore:
-                    key-path: src/main/config/truststore_server.jks
-                    key-password: changeme
-                    type: JKS
-                hostname-verification: false
+At the module level, you must add properties to do the mapping between the identity provider and the webservice to call.
+
+Example : `/vitamui/conf/iam/application.yml`
+
+```yml
+provisioning-client:
+    identity-providers:
+        - idp-identifier: system_idp
+            uri: https://localhost:8090/provisioning/v1/users
+            client:
+            secure: true
+            ssl-configuration:
+                keystore:
+                key-path: src/main/config/keystore_provisioning-users.p12
+                key-password: changeme
+            truststore:
+                key-path: src/main/config/truststore_server.p12
+                key-password: changeme
+            hostname-verification: false
 ```
 
 Please note that the configuration take a list in input
-

api/api-iam/iam/src/main/resources/application-dev.yml

@@ -22,10 +22,10 @@ server:
   host:
   port: 8083
   ssl:
-    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/server/iam/keystore_iam.jks
+    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_iam.p12
     key-store-password: changeme
     key-password: changeme
-    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
     trust-store-password: changeme
     client-auth: want
     enabled-protocols: TLSv1.2,TLSv1.3
@@ -53,12 +53,11 @@ cas-client:
   secure: true
   ssl-configuration:
     truststore:
-      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
       key-password: changeme
     keystore:
-      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/iam/keystore_iam.jks
+      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/keystore_iam.p12
       key-password: changeme
-      type: JKS
     hostname-verification: false
 
 cas.reset.password.url: /cas/extras/resetPassword?username={username}&firstname={firstname}&lastname={lastname}&language={language}&customerId={customerId}&ttl=1day
@@ -112,27 +111,23 @@ provisioning-client:
         secure: false
         ssl-configuration:
           keystore:
-            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/iam/keystore_iam.jks
+            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/keystore_iam.p12
             key-password: changeme
-            type: JKS
           truststore:
-            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
             key-password: changeme
-            type: JKS
           hostname-verification: false
     - idp-identifier: 2
       uri: https://localhost:8090/provisioning/v1/users
       client:
         secure: true
         ssl-configuration:
           keystore:
-            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/iam/keystore_iam.jks
+            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/keystore_iam.p12
             key-password: changeme
-            type: JKS
           truststore:
-            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+            key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
             key-password: changeme
-            type: JKS
           hostname-verification: false
 
 address:

api/api-iam/iam/src/test/resources/application.yml

@@ -62,10 +62,9 @@ cas-client:
   secure: true
   ssl-configuration:
     truststore:
-      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
       key-password: changeme
     keystore:
-      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/server/iam/keystore_iam.jks
+      key-path: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_iam.p12
       key-password: changeme
-      type: JKS
     hostname-verification: false

api/api-ingest/ingest/src/main/resources/application-dev.yml

@@ -15,10 +15,10 @@ server:
   host:
   port: 8088
   ssl:
-    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/server/ingest/keystore_ingest.jks
+    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_ingest.p12
     key-store-password: changeme
     key-password: changeme
-    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
     trust-store-password: changeme
     client-auth: want
     enabled-protocols: TLSv1.2,TLSv1.3
@@ -43,12 +43,11 @@ ingest:
     secure: true
     ssl-configuration:
       truststore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
         key-password: changeme
       keystore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/ingest/keystore_ingest.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/keystore_ingest.p12
         key-password: changeme
-        type: JKS
       hostname-verification: false
 cas.tenant.identifier: -1
 # Jaeger

api/api-ingest/ingest/src/test/resources/application.yml

@@ -24,12 +24,11 @@ ingest:
     secure: true
     ssl-configuration:
       truststore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
         key-password: changeme
       keystore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/server/archive-search/keystore_archive-search.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_ingest.p12
         key-password: changeme
-        type: JKS
       hostname-verification: false
 
 swagger:

api/api-pastis/pastis/src/main/resources/application-dev.yml

@@ -35,10 +35,10 @@ server:
   host:
   port: 8015
   ssl:
-    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/server/pastis/keystore_pastis.jks
+    key-store: ../../../dev-deployment/environments/keystores/vitamui-services/servers/keystore_pastis.p12
     key-store-password: changeme
     key-password: changeme
-    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+    trust-store: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
     trust-store-password: changeme
     client-auth: want
     enabled-protocols: TLSv1.1,TLSv1.2,TLSv1.3
@@ -62,12 +62,11 @@ pastis:
     secure: true
     ssl-configuration:
       truststore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/truststore_vitamui-services.p12
         key-password: changeme
       keystore:
-        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/pastis/keystore_pastis.jks
+        key-path: ../../../dev-deployment/environments/keystores/vitamui-services/clients/keystore_pastis.p12
         key-password: changeme
-        type: JKS
       hostname-verification: false
 
 # Jaeger