Return-Path: X-Original-To: apmail-cxf-users-archive@www.apache.org Delivered-To: apmail-cxf-users-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id E56AC101DD for ; Tue, 26 Nov 2013 12:06:47 +0000 (UTC) Received: (qmail 18259 invoked by uid 500); 26 Nov 2013 12:06:40 -0000 Delivered-To: apmail-cxf-users-archive@cxf.apache.org Received: (qmail 17913 invoked by uid 500); 26 Nov 2013 12:06:40 -0000 Mailing-List: contact users-help@cxf.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: users@cxf.apache.org Delivered-To: mailing list users@cxf.apache.org Received: (qmail 17905 invoked by uid 99); 26 Nov 2013 12:06:39 -0000 Received: from athena.apache.org (HELO athena.apache.org) (140.211.11.136) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 26 Nov 2013 12:06:39 +0000 X-ASF-Spam-Status: No, hits=2.3 required=5.0 tests=SPF_SOFTFAIL,URI_HEX X-Spam-Check-By: apache.org Received-SPF: softfail (athena.apache.org: transitioning domain of joel.tazzari@gmail.com does not designate 216.139.236.26 as permitted sender) Received: from [216.139.236.26] (HELO sam.nabble.com) (216.139.236.26) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 26 Nov 2013 12:06:34 +0000 Received: from [192.168.236.26] (helo=sam.nabble.com) by sam.nabble.com with esmtp (Exim 4.72) (envelope-from ) id 1VlHPC-0005mt-1e for users@cxf.apache.org; Tue, 26 Nov 2013 04:06:14 -0800 Date: Tue, 26 Nov 2013 04:06:14 -0800 (PST) From: tazouxme To: users@cxf.apache.org Message-ID: <1385467573859-5737010.post@n5.nabble.com> Subject: Question about CXF Fediz 1.1.0 and certificates MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit X-Virus-Checked: Checked by ClamAV on apache.org Hi all, Congrats for the job, this is a very nice feature, very useful ! I have some questions about certificates. There are a lot of certificates used in Fediz, and I do not understand how it works. This is problematic because I would like to generate and use my own REALM-name. Could you please explain me those certificates and, if possible, how they are generated? - idp-ssl-server.jks - rp-ssl-server.jks - ststrust.jks No problem about stsrealm_a.jks and stsrealm_b.jks. One last question : I would use Fediz in my system. Is it possible to use only one REALM-name (that is to say only one IdP)? And furthmore, as there would be only one IdP available, is it possible to avoid the step of chosing an IdP before logging? Thanks a lot for your explanation :) Regards, Joel -- View this message in context: http://cxf.547215.n5.nabble.com/Question-about-CXF-Fediz-1-1-0-and-certificates-tp5737010.html Sent from the cxf-user mailing list archive at Nabble.com.