> the private key specified in for the alias is for signing, check..err, > right? what if mykeys.jks doesn't have any public certs? or if it has > multiple? how does it generate the BST?
It generates the BST from the certificate in the keystore specified by the alias. If there is no certificate, then obviously a BST will not be created. Colm. On Tue, Feb 21, 2012 at 9:31 PM, blicket <[email protected]> wrote: > Now I'm almost certainly confused. How is CXF generating from BST when all > I've specified are these in the properties? > > org.apache.ws.security.crypto.provider=org.apache.ws.security.components.crypto.Merlin > org.apache.ws.security.crypto.merlin.keystore.file=mykeys.jks > org.apache.ws.security.crypto.merlin.keystore.type=jks > org.apache.ws.security.crypto.merlin.keystore.password=changeit > org.apache.ws.security.crypto.merlin.keystore.alias=private_key > > the private key specified in for the alias is for signing, check..err, > right? what if mykeys.jks doesn't have any public certs? or if it has > multiple? how does it generate the BST? > > > -- > View this message in context: > http://cxf.547215.n5.nabble.com/x-509-security-token-tp5150380p5503433.html > Sent from the cxf-user mailing list archive at Nabble.com. -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
