Description
The CXF STS creates a RequestSecurityTokenResponse. The response should be more flexible and allow for more configuration options, perhaps through a callback. Please reference this post for more information:
http://cxf.547215.n5.nabble.com/CXF-STS-RequestSecurityTokenResponse-and-RequestType-tc5719848.html