Sounds like a lot of work.I think XML sec picks up Xalan classes directly (not via service/factory lookup), so you should be able to just remove the META-INF/services/javax.xml... entries from the xalan jar and the app server won't even notice that it is an XSLT provider.
- Using XML Security without Xalan JAR? Hacking Bear
- Re: Using XML Security without Xalan JAR? Clive Brettingham-Moore
- Re: Using XML Security without Xalan JAR? jason marshall
- Re: Using XML Security without Xalan ... jason marshall
