Hi,
The ClientPasswordCallbackHandler is called to obtain the password for
> the keystore.
IFAIK, the key store password is given as crypto property. Only password to
obtain the private key from the certificate is taken from the callback.
<ramp:property
name="org.apache.ws.security.crypto.merlin.keystore.password">password</ramp:property>
or
*Properties prop = new Properties();
prop.setProperty("org.apache.ws.security.crypto**.merlin.keystore.password",
"password")
....
CryptoConfig encrCrypto = new CryptoConfig();
encrCrypto.setProp(prop);
.....
rc.setEncrCryptoConfig(encrCrypto);*
> How can I put a password for the UsernameToken, that is
> different than the password used for signing?
>
I think this is possible with the USAGE of password callback.
*String id = pwcb.getIdentifer();*
*int usage = pwcb.getUsage();*
*if("Alice".equals(id) && usage == WSPasswordCallback.USERNAME_TOKEN) {
pwcb.setPassword("password");
}else if ("Alice".equals(id) && usage == WSPasswordCallback.SIGNATURE) {
pwcb.setPassword("password2);
}*
If you are talking about the key store password, you can actually have to
CryptoConfig s
for signature and encryption.
Regards,
Nandana
