Return-Path: Delivered-To: apmail-cxf-users-archive@www.apache.org Received: (qmail 29331 invoked from network); 27 Nov 2008 13:51:18 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (140.211.11.2) by minotaur.apache.org with SMTP; 27 Nov 2008 13:51:18 -0000 Received: (qmail 16405 invoked by uid 500); 27 Nov 2008 13:51:29 -0000 Delivered-To: apmail-cxf-users-archive@cxf.apache.org Received: (qmail 15832 invoked by uid 500); 27 Nov 2008 13:51:28 -0000 Mailing-List: contact users-help@cxf.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cxf.apache.org Delivered-To: mailing list users@cxf.apache.org Received: (qmail 15821 invoked by uid 99); 27 Nov 2008 13:51:27 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 27 Nov 2008 05:51:27 -0800 X-ASF-Spam-Status: No, hits=2.6 required=10.0 tests=DNS_FROM_OPENWHOIS,SPF_HELO_PASS,SPF_PASS,WHOIS_MYPRIVREG X-Spam-Check-By: apache.org Received-SPF: pass (athena.apache.org: domain of lists@nabble.com designates 216.139.236.158 as permitted sender) Received: from [216.139.236.158] (HELO kuber.nabble.com) (216.139.236.158) by apache.org (qpsmtpd/0.29) with ESMTP; Thu, 27 Nov 2008 13:50:00 +0000 Received: from isper.nabble.com ([192.168.236.156]) by kuber.nabble.com with esmtp (Exim 4.63) (envelope-from ) id 1L5hGY-00028I-78 for users@cxf.apache.org; Thu, 27 Nov 2008 05:50:46 -0800 Message-ID: <20719606.post@talk.nabble.com> Date: Thu, 27 Nov 2008 05:50:46 -0800 (PST) From: Mark2008 To: users@cxf.apache.org Subject: WS-Security in Production Environment MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Nabble-From: mhuangus@gmail.com X-Virus-Checked: Checked by ClamAV on apache.org I am looking at the online tutorials on how to use Encryption / Signature to secure CXF web service. The examples package the keystore / truststore into the web war file and deploy to the some web container. My question is, after the cxf/webservice application has been deployed to a production environment, how do we import the client certificate and update the truststore for any new client without shutting down the web server? What's the best practice on this? Thanks, Mark -- View this message in context: http://www.nabble.com/WS-Security-in-Production-Environment-tp20719606p20719606.html Sent from the cxf-user mailing list archive at Nabble.com.