Skip to content

spring.couchbase.authentication.jks.private-key-password has no effect #45883

New issue
New issue
Closed
Closed
spring.couchbase.authentication.jks.private-key-password has no effect#45883
Assignees
mhalbritter
Labels
type: bugA general bug
Milestone
3.4.7
@mhalbritter

Description

@mhalbritter
mhalbritter
opened on Jun 11, 2025
Contributor

org.springframework.boot.autoconfigure.couchbase.CouchbaseProperties.Authentication.Jks#getPrivateKeyPassword isn't used anywhere. Investigate if that's an oversight or if the property can be removed.

Activity

mhalbritter
added
type: taskA general task
on Jun 11, 2025
mhalbritter
added this to the 3.4.x milestone on Jun 11, 2025
Sarankumar18

Sarankumar18 commented on Jun 11, 2025

@Sarankumar18
Sarankumar18
on Jun 11, 2025

@mhalbritter
Removing privateKeyPassword from CouchbaseProperties.Authentication.Jks. This property is not used anywhere internally in Spring Boot's Couchbase auto-configuration. It is not bound from configuration files, nor referenced in any logic or tests. Removing it helps eliminate dead code and reduces confusion for users.

wilkinsona

wilkinsona commented on Jun 11, 2025

@wilkinsona
wilkinsona
on Jun 11, 2025
Member

@Sarankumar18 Apologies if it's not the case, but that comment reads to me like it was generated by an LLM. If that is the case, it's not beneficial to the project as we could ask an LLM ourselves if we wanted to do so. It also doesn't add anything new as the issue already states that getPrivateKeyPassword "isn't used anywhere". We now need to investigate why it's not being used and either start using it if that's an oversight or remove it if it's not.

HyunSangHan

HyunSangHan commented on Jun 15, 2025

@HyunSangHan
HyunSangHan
on Jun 15, 2025 · edited by HyunSangHan
Contributor

Hi Spring Boot team,

I found this issue interesting and took some time to investigate.

I cannot say for sure, but I would like to share what I found:

  • The CouchbaseProperties.Authentication.Jks#getPrivateKeyPassword method was introduced in add3d87, as part of the changes to Provide auto-configuration for authenticating with Couchbase using a client certificate #41520.
  • In that commit, logic for using privateKeyPassword was added for PEM-based authentication, but not for JKS. The field was defined for JKS but is not actually used.
  • The documentation(nosql.adoc) updated in the same commit does not mention privateKeyPassword for JKS either.
  • Based on my understanding, JKS keystores typically require only the keystorePassword, so a separate privateKeyPassword is usually not needed.
    • This seems to be consistent with the Couchbase SDK as well. For example, the fromKeyStore method does not require a privateKeyPassword either.
  • Given this, it seems that privateKeyPassword is not necessary in the JKS case. Removing it might help reduce confusion for users.

I hope this helps!

mhalbritter
self-assigned this
on Jun 18, 2025
mhalbritter
changed the title [-]CouchbaseProperties.Authentication.Jks#getPrivateKeyPassword seems to be unused[/-] [+]spring.couchbase.authentication.jks.private-key-password has no effect[/+] on Jun 18, 2025
mhalbritter
added
type: bugA general bug
and removed
type: taskA general task
on Jun 18, 2025
mhalbritter
mentioned this on Jun 18, 2025
mhalbritter
closed this as completedin 498df49on Jun 18, 2025
mhalbritter
added a commit that references this issue on Jun 18, 2025

Remove unused JKS privateKeyPassword property from Couchbase

498df49
mhalbritter
modified the milestones: 3.4.x, 3.4.7 on Jun 18, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Metadata

Metadata

Assignees

Labels

type: bugA general bug

Type

No type

Projects

No projects

Milestone

Relationships

None yet

    Development

    No branches or pull requests

      Participants

      @wilkinsona@HyunSangHan@Sarankumar18@mhalbritter

      Issue actions
        spring.couchbase.authentication.jks.private-key-password has no effect · Issue #45883 · spring-projects/spring-boot