[xmlsec] Signing with key on token

Roumen Petrov xmlsec at roumenpetrov.info
Wed Aug 9 10:58:47 PDT 2017

Aleksey Sanin wrote:
> It was discussed in the mailing list in the past. You need to
> create openssl config file to use the engine by default and
Hmm, in general this configuration will not work.

Engines that operate with keys material stored externally cannot be set 
as default - usually this break operations with keys stored differently 
(file and etc.).

> pass it to xmlsec1 command line tool.
Perhaps it will work for simple command line case with single key.

On other side openssl command line option -engine specify where is 
located key (call method ENGINE_load_private_key).


More information about the xmlsec mailing list