Signature alg fix

[DamienJDev]

There doesn't appear to be any way for the setSignatureAlgorithm(...) in com.sun.xml.ws.security.trust.impl.client.DefaultSTSIssuedTokenConfiguration to actually set/override the signature algorithm for STS requests, instead it's always reset to null and thus defaults to SHA1.

This patch allows the setting to pass through to the context and sets the signature algorithm in the algorithm suite. I'm unclear on how the internals of the API are intended to set/pass through this value, if this is not correct then I'm happy to discuss.

There appears to also be an issue with WSDL set signature algorithms not addressed here, they don't seem to actually show up in requests or while debugging the request creation (Please refer to #57)

[dmatej]

Hi @DamienJDev , sorry it took so long, I have rebased your PR and it seems valid to me, passed locally all tests, but to merge the PR I would need you to sign the ECA.
See

• https://api.eclipse.org/git/eca/status/gh/eclipse-ee4j/metro-wsit/58
• https://www.eclipse.org/legal/eca/faq/
• https://adoptium.net/docs/eca-sign-off/

If your email used in commits is not used by you any more, you can probably merge them to one and commit with the email you use no on GitHub, liked to the Eclipse account used to sign the ECA.

Another option (if you don't have time or you don't want to sign ECA) is that I could recreate your changes in my email.