Needs sec-client.properties to define the keystore file and password.
Needs sec-client.jks with the keyEntry for the user who will be signing messages. For the user this should be a file with just the trustedCertEntries to which the user adds his key/cert. see exampleClients.html for instructions on how to do this.
Needs ssl-keystore.jks to hold the trustedCert enties for the ssl connection to the Tomcat server. The name and the password for this file are hard-coded into net.es.oscars.client.security. KeyManagement.
The default ant task in examples/javaClients/build.xml will create and populate a repo directory with all these pieces. The user may want to edit the axis2.xml to chose a different user to sign the messaage and may want to add additional keyEntries to sec-client.jks. Any edited files should be copied to someplace safe since the repo directory is purged and recreated each time ant is run.
Tomcat needs the keystore referenced in ${catalina.home}/conf/server.xml to do server-side ssl.
If no keystoreFile entry is specified in the https connnector element of server.xml, the file ~/.keystore is used.
If no keystorePass entry is specified the password is "changeit".
On oscars-dev keystoreFile element of the Connector for port 9090 is /root/.keystore. The keystore
contains a keyEntry for the oscars-dev cert/key with alias tomcat and the trustedcert entries for that key.