I don't think it's possible with cxf http-osgi transport.
As the SSL transport level configuration is per port, so if your services are using cxf http-osgi transport(pax-web underlying), which means it will use same port, then you can't achieve such per-service/endpoint basis configuration.
However, if your services are using cxf http-jetty transport directly, which means each service can listen on different port, then you can configure different port with different keystore/truststore/client auth policy, from this way, you can achieve kind of per-service/endpoint configuration.
Thank you for the quick response. Is it possible to deploy the bundles relevant to a RESTful endpoint to the OSGI container, and still use the http-jetty transport? How is this done? I'd appreciate a reference to any examples.
Thanks again. So to configure TLS, would you recommend the approach described here: <http://is.gd/aSAuv4>, that is, using something like:
Yeah, if you really wanna using different SSL configuration for different endpoint, as the SSL configuration is per port.
One more question: I can configure the server's keystore using the following:
What about a truststore? I tried putting trusted certs in the same keystore (and they're labeled as trusted inside the store), but that doesn't seem to work. Is there another way to configure or point to a truststore?