search

eclipse-platform / eclipse.platform

https://eclipse.dev/eclipse/
Eclipse Public License 2.0
72 stars 104 forks source link

Implement PKCS authentication #728

Open JavaJoeS opened 11 months ago

JavaJoeS commented 11 months ago

Discussed in https://github.com/eclipse-platform/eclipse.platform/discussions/680

Originally posted by **JavaJoeS** September 13, 2023 Add PKCS12 and PKCS11 implementation. See; https://github.com/eclipse-m2e/m2e-core/discussions/1538
JavaJoeS commented 11 months ago

Almost all internet sites are secured, most publicly, some privatized requiring user x509 Certificates. Eclipse needs to have the ability to utilize keystores and truststores to provide SSLcontext.

JavaJoeS commented 11 months ago

Looking to add UI for a PKI selection in package; package org.eclipse.ui.internal.net.auth Looks to me like the place to put it?

mickaelistria commented 11 months ago

Yes, this seems like the right package where to add authentication features.

JavaJoeS commented 11 months ago

I pulled a fork and began adding in some code. Its going to be a lot of work! I have a lot of highly customized code that I will need to make generic.

JavaJoeS commented 11 months ago

For my custom PKI implementation I used; import org.eclipse.equinox.security.storage.ISecurePreferences; import org.eclipse.equinox.security.storage.SecurePreferencesFactory; to contain all of the pki related information; including, but not limited to; Passwords, Pins and physical locations. However, that may not be the best solution for this implementation. I see references to import org.eclipse.core.resources.IStorage and was wondering if that is an acceptable alternative or if its as secure? Any help, ideas, comments greatly appreciated.