Hi, My comment inline ------------- Freeman(Yue) Fang
Red Hat, Inc. FuseSource is now part of Red Hat On 2014-5-6, at 上午3:32, Jose María Zaragoza wrote: > Hello: > > I've got 2 basic questions about client-cert authentication: > > 1) According CXF documentation , I can set > > <sec:keyManagers keyPassword="password"> > <sec:keyStore type="JKS" password="password" > file="my/file/dir/Morpit.jks"/> > </sec:keyManagers> > > What is the keyPassword in sec:keyManagers element for ? the keyPassword attribute specifies the password needed to decrypt the certificate’s private key > > 2) > > If I've got many client-certs in the same .jks file , how I can select > the right client-cert to use ? > Should I create different keystore for implementing this ? No, you can specify the cert alias to select which cert you wanna use, the configuration is like <sec:certAlias>morpit</sec:certAlias> You can get more details from [1] [1]https://issues.apache.org/jira/browse/CXF-4204 > > > Thanks and regards
