I have an ear with 8 or so jboss native web service deployments that I want to enforce signature via ws-security. I have been able to get a single web service to work but what I want to to is to not have to include the jboss-wsse-server.xml and the truststore/keystore in every war deployment but include it only once in the ear. When I move the keystore/truststore into the META-INF of the ear and attempt to reference via
<?xml version="1.0" encoding="UTF-8"?>
<jboss-ws-security xmlns="http://www.jboss.com/ws-security/config" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xsi:schemaLocation="http://www.jboss.com/ws-security/config http://www.jboss.com/ws-security/schema/jboss-ws-security_1_0.xsd">
<key-store-file>META-INF/jboss.keystore</key-store-file>
<key-store-password>XXXXX</key-store-password>
<trust-store-file>META-INF/jboss.truststore</trust-store-file>
<trust-store-password>XXXXXX</trust-store-password>
<config>
<!--<sign type="x509v3" alias="wsse"></sign>-->
<requires>
<signature ></signature>
</requires>
</config>
</jboss-ws-security>
I get a cannot find required security resource META-INF/jboss.keystore thrown as an exception from WSSecurityConfigFactory.
Is there a way to only deploy the keystore/truststore and jboss-wsse-server.xml once in the ear and reference it from multiple wars deployed with ear as well. Or is there a way that I can read in the truststore/keystore from the file system to user?
Thanks