So what is the behaviour you have checked in? Whether xmlsec checks the signer cert with both system storage and manually passed certs by deafult or by default the library checks using trusted certs only?
By default, it checks both passed trusted certs and system trusted certs (to keep the old behavior). But you can call the new function
xmlSecMSCryptoX509StoreEnableSystemTrustedCerts(store, false); and disable the check in system trusted certs storage. Aleksey _______________________________________________ xmlsec mailing list [email protected] http://www.aleksey.com/mailman/listinfo/xmlsec
