Currently fediz_config.xml configuration file is under conf directory of the Tomcat. I don't know this is because org.apache.cxf.fediz.tomcat.FederationAuthenticator loading the configuration file.Content of this configuration file is application specific(I am saysing that each application in Tomcat can have own fediz_config.xml which points to different STSs). Personally, I think that both fediz_config.xml and clientstore.jks should go somewhere under \webapps\fedizhelloworld. If I put both file under WEB-INF, it looks like that I need to use path for webapps\fedizhelloworld\WEB-INF. Is there better way to do that?
Following is part of fediz_config.xml that I currently use. <FedizConfig> <contextConfig name="/fedizhelloworld"> <audienceUris> <audienceItem>https://wkengchoi.global.sdl.corp:9443/fedizhelloworld/ </audienceItem> </audienceUris> <certificateStores> <trustManager> <keyStore file="conf/clientstore.jks" password="cspass" type="JKS" /> </trustManager> </certificateStores> Thanks. Gina
