In open source world everything is possible :D Probably you need to extend Marlin class accomplish this.
On 4/26/07, Wacław Borowiec <[EMAIL PROTECTED]> wrote:
Thanks, your answer helped mi a lot! But here comes another question: If we're able to get client's certificate as an effect of signing the message by the client, is there an ability to use this certificate to encrypt the response without impoting it to server's store? On 26/04/07, Tomek Sztelak <[EMAIL PROTECTED]> wrote: > Take a look at ValidateUserTokenHandler. > There is line : > context.setProperty(WSHandlerConstants.ENCRYPTION_USER,principal.getName()); > which tells server about client alias. > > On 4/26/07, Wacław Borowiec < [EMAIL PROTECTED]> wrote: > > Hello > > > > If we use encryption from a server to a client, how the server knows which > > public key from a truststore to use? I noticed in xfire ws-security example, > > that we don't pass any client key alias neither in out encryption > > properties, service.xml nor at runtime. What if there are few public keys in > > the truststore? Does xfire take only the first one? > > > > thanks for any help > > Wacław Borowiec > > > > > -- > ----- > When one of our products stops working, we'll blame another vendor > within 24 hours. >
-- ----- When one of our products stops working, we'll blame another vendor within 24 hours.
