Hi All,
According to the current design; KeyStore which is defined in the
carbon.xml file is used for both secure vault & token signing
(SAML/id_token) which is not a good design. We need to keep that separate
keystore for secure vault as it can not be modified.
Also; To add more flexibility; it is better to have separate keystore for
each token signing. I know we can extend & achieve this, but default
implementation would be great.
Shall we add this to next WSO2IS release as this is a simple improvement ?
Thanks,
Asela.
--
Thanks & Regards,
Asela
ATL
Mobile : +94 777 625 933
+358 449 228 979
http://soasecurity.org/
http://xacmlinfo.org/
_______________________________________________
Architecture mailing list
[email protected]
https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
