[xmlsec] Signing with key on token

Aleksey Sanin aleksey at aleksey.com
Wed Aug 9 14:07:16 PDT 2017

Sure. I think it will work for a simple use cases when there is only
one key. And yes, for anything more sophisticated custom code is required.


On 8/9/17 10:58 AM, Roumen Petrov wrote:
> Aleksey Sanin wrote:
>> It was discussed in the mailing list in the past. You need to
>> create openssl config file to use the engine by default and
> Hmm, in general this configuration will not work.
> Engines that operate with keys material stored externally cannot be set
> as default - usually this break operations with keys stored differently
> (file and etc.).
>> pass it to xmlsec1 command line tool.
> Perhaps it will work for simple command line case with single key.
> On other side openssl command line option -engine specify where is
> located key (call method ENGINE_load_private_key).
> Regards,
> Roumen
> _______________________________________________
> xmlsec mailing list
> xmlsec at aleksey.com
> http://www.aleksey.com/mailman/listinfo/xmlsec

More information about the xmlsec mailing list