0 Replies Latest reply on Sep 12, 2012 8:46 AM by kenbarnes

    Ws-Security jboss-wsse-server.xml deployed in EAR cant find keystore

    kenbarnes

      I have an ear with 8 or so jboss native web service deployments that I want to enforce signature via ws-security. I have been able to get a single web service to work but what I want to to is to not have to include the jboss-wsse-server.xml and the truststore/keystore in every war deployment but include it only once in the ear.  When I move the keystore/truststore into the META-INF of the ear and attempt to reference via

       


       

      <?xml version="1.0" encoding="UTF-8"?>

           <jboss-ws-security xmlns="http://www.jboss.com/ws-security/config" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"

              xsi:schemaLocation="http://www.jboss.com/ws-security/config http://www.jboss.com/ws-security/schema/jboss-ws-security_1_0.xsd">

       

             <key-store-file>META-INF/jboss.keystore</key-store-file>

             <key-store-password>XXXXX</key-store-password>

             <trust-store-file>META-INF/jboss.truststore</trust-store-file>

             <trust-store-password>XXXXXX</trust-store-password>

             <config>

             <!--<sign type="x509v3" alias="wsse"></sign>-->

               <requires>

                 <signature ></signature>

               </requires>

             </config>

           </jboss-ws-security>

       

      I get a cannot find required security resource META-INF/jboss.keystore thrown as an exception from WSSecurityConfigFactory.

       

      Is there a way to only deploy the keystore/truststore and jboss-wsse-server.xml once in the ear and reference it from multiple wars deployed with ear as well. Or is there a way that I can read in the truststore/keystore from the file system to user?

      Thanks