saml.setIssuerCrypto(issuerCrypto);
saml.setIssuerKeyName("wss40_server");
saml.setIssuerKeyPassword("security");
saml.setSignAssertion(true);
saml.setCallbackHandler(callbackHandler);
AssertionWrapper assertion = saml.newAssertion();
WSSecSignatureSAML wsSign = new WSSecSignatureSAML();
wsSign.setKeyIdentifierType(WSConstants.BST_DIRECT_REFERENCE);
wsSign.setUserInfo("wss40", "security");