One of our vendors wants us to switch to using SFTP using a key pair. Does anyone one have any tips on how to set this up in Ignition?
I was thinking I need to setup a keystore and generate a keypair, but I cannot find much of any support for ed25519 with java keystore.
What are you doing for SFTP in the fist place?
edit: I read that assuming you are doing SFTP already but need to change the security being used… is that not the case?
We are currently using org.apache.commons.net.ftp.FTPSClient with a username and password.
You’re probably better off asking on a mailing list for that library or something, but I don’t think there’s anything you can do right now to get ed25519 working.
My understanding is that using x25519 EC for TLS wasn’t supported until JDK 13 and Ignition is currently shipping with JDK 11. SFTP just uses SSL/TLS underneath, so unless there’s some way to augment this library you’re using with another crypto provider like BouncyCastle I don’t see how it’s possible. (no idea how to do this or if it’s possible, you should be asking wherever you might get support for that library)