Skip to main content

filesystem Vault

Vault

filesystem Vault

Defines a vault stored on the local filesystem.

The filesystem vault uses PKCS12 format to store signed certificates and keys.

The keys option is used to identify the local peer in a TLS handshake.

The trust option is used to verify identity of the remote peer in a TLS handshake.

The signers option is used to challenge for mutual authentication in a TLS handshake.

server:
  type: filesystem
  options:
    keys:
      store: localhost.p12
      type: pkcs12
      password: ${{env.KEYS_PASSWORD}}

Configuration (* required)

options

object

The filesystem specific options.

options:
  keys:
    store: localhost.p12
    type: pkcs12
    password: ${{env.KEYS_PASSWORD}}

options.keys

object

Private keys.

keys.store

string

Relative path to keystore.

keys.type

string | Default: pkcs12

Keystore type.

keys.password

string

Keystore password.

options.trust

object

Trust certificates.

trust.store

string

Relative path to keystore.

trust.type

string | Default: pkcs12

Keystore type.

trust.password

string

Keystore password.

options.signers

object

Signer certificates.

signers.store

string

Relative path to keystore.

signers.type

string | Default: pkcs12

Keystore type.

signers.password

string

Keystore password.

© aklivity, inc. 2023-2024