Hello all, For our project we have a webservice making use of WSS4JInInterceptor and CryptoCoverageChecker in order to secure incoming requests using a truststore. Our admins are able to add new certificates to this truststore during runtime, but when new requests come in making use of this certificate they do not pass validation. The application needs to be turned off and on again in order to read the new certificates in the truststore. Our wish is to have the endpoint be aware of the added certificates in the truststore during runtime. Our current idea is to stop the published endpoint whenever new certificates are added and then recreate the endpoint and thus reading the entire truststore again. However we would rather solve it using configuration rather than writing new code for this case. We are wondering if there are configuration options for the WSS4JInInterceptor that allows for dynamic additions to the keystore so that we can solve the problem using configurations of the endpoint rather than having to recreate the endpoint in whole?
regards, Lars Leijten Dit bericht kan informatie bevatten die niet voor u is bestemd. Indien u niet de geadresseerde bent of dit bericht abusievelijk aan u is gezonden, wordt u verzocht dat aan de afzender te melden en het bericht te verwijderen. De Staat aanvaardt geen aansprakelijkheid voor schade, van welke aard ook, die verband houdt met risico's verbonden aan het elektronisch verzenden van berichten. This message may contain information that is not intended for you. If you are not the addressee or if this message was sent to you by mistake, you are requested to inform the sender and delete the message. The State accepts no liability for damage of any kind resulting from the risks inherent in the electronic transmission of messages.
