ws security - Bottom-up CXF Web Service with WS-Trust - is it possible? -

i'm trying develop secure cxf web service java-first approach (java2ws). fine until try define "issuedtoken" policy shown, example, here.

the problem is, of course, wsdl generated, can't insert policy in wsdl. tried @policy annotation , managed generate proper wsdl file, find policy ignored service, doesn't show in "online" wsdl.

so how go implementing secure web service bottom-up approach? can done?

p.s. i'm going deploy service in fuse

i think it's not possible way. per ws-thrust note: because ws-issuedtoken support builds on ws-securitypolicy support, available "wsdl first" projects.