THIS IS A TEST INSTANCE. ALL YOUR CHANGES WILL BE LOST!!!!
Introduction
CXF adds support for the HTTP Signatures draft spec since CXF 3.3.0.
Maven Dependencies
Having the following dependency will let developers write JOSE JWS or JWE code:
<dependency> <groupId>org.apache.cxf</groupId> <artifactId>cxf-rt-rs-security-http-signature</artifactId> <version>3.3.1</version> </dependency>
HTTP Signature overview and Implementation
Configuration
The following configuration properties can be used to configure HTTP Signature with the various filters. Note that they are shared for the most part with JAX-RS JOSE.
| rs.security.keystore | The Java KeyStore Object to use. This configuration tag is used if you want to pass the KeyStore Object through dynamically. |
rs.security.keystore.type | The keystore type. It defaults to "JKS" for HTTP Signature. |
| rs.security.keystore.password | The password required to access the keystore. |
| rs.security.keystore.alias | The keystore alias corresponding to the key to use. |
| rs.security.keystore.file | The path to the keystore file. |
| rs.security.key.password | The password required to access the private key (in the keystore). |
| rs.security.key.password.provider | A reference to a PrivateKeyPasswordProvider instance used to retrieve passwords to access keys. |
| rs.security.signature.out.properties | The signature properties file for Compact or JSON signature creation. If not specified then it falls back to "rs.security.signature.properties". |
| rs.security.signature.in.properties | The signature properties file for Compact or JSON signature verification. If not specified then it falls back to "rs.security.signature.properties". |
| rs.security.signature.properties | The signature properties file for Compact or JSON signature creation/verification. |
| rs.security.signature.algorithm | The signature algorithm to use. The default algorithm if not specified is "rsa-sha256". |