This entry is used for mapping certificate or certificate chain to user name on the accepting side. Then creates the org.idoox.security.WASPPrincipal(name) object and adds it to subject principals set.
Current SSL authentication uses this entry on the server side. When the accepting side receives a message, it:
Checks whether certificate chain is trusted (using WSO2 SOA Enablement Server KeyStore);
Checks whether the user with this certificate (chain) exists in the WSO2 SOA Enablement Server UserStore;
Creates the object org.idoox.security.WASPPrincipal(name);
Adds it to subject principals set.
Default implementation
com.idoox.security.jaas.CertsLoginModule
Passed callbacks
org.idoox.security.jaas.CertificatesCallback;
org.idoox.security.jaas.UserStoreCallback;
org.idoox.security.jaas.KeyStoreCallback;