You hit the mark! But for now, I'd to be able to exclude or include the STS approach. Perhaps the problem is related to security-constraint in the web.xml. Furthermore if I take off this configuration the other "filters" (authentication schema) works, but as you can imagine STS authentication doesn't work, and the client is redirected on the index.jsp without any kind of authentication. Is there a solution for this problem?
Ermanno -- View this message in context: http://cxf.547215.n5.nabble.com/Enable-Disable-STS-Authentication-tp5637879p5638182.html Sent from the cxf-user mailing list archive at Nabble.com.
