Now I'm almost certainly confused. How is CXF generating from BST when all I've specified are these in the properties?
org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin org.apache.ws.security.crypto.merlin.keystore.file=mykeys.jks org.apache.ws.security.crypto.merlin.keystore.type=jks org.apache.ws.security.crypto.merlin.keystore.password=changeit org.apache.ws.security.crypto.merlin.keystore.alias=private_key the private key specified in for the alias is for signing, check..err, right? what if mykeys.jks doesn't have any public certs? or if it has multiple? how does it generate the BST? -- View this message in context: http://cxf.547215.n5.nabble.com/x-509-security-token-tp5150380p5503433.html Sent from the cxf-user mailing list archive at Nabble.com.
