[xmlsec] Signing with key on token
Aleksey Sanin
aleksey at aleksey.com
Wed Aug 9 14:07:16 PDT 2017
Sure. I think it will work for a simple use cases when there is only
one key. And yes, for anything more sophisticated custom code is required.
Aleksey
On 8/9/17 10:58 AM, Roumen Petrov wrote:
> Aleksey Sanin wrote:
>> It was discussed in the mailing list in the past. You need to
>> create openssl config file to use the engine by default and
> Hmm, in general this configuration will not work.
>
> Engines that operate with keys material stored externally cannot be set
> as default - usually this break operations with keys stored differently
> (file and etc.).
>
>> pass it to xmlsec1 command line tool.
> Perhaps it will work for simple command line case with single key.
>
> On other side openssl command line option -engine specify where is
> located key (call method ENGINE_load_private_key).
>
> Regards,
> Roumen
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec
More information about the xmlsec
mailing list