WSSecSignature sign = new WSSecSignature();
sign.setKeyIdentifierType(WSConstants.ENCRYPTED_KEY_SHA1_IDENTIFIER);
sign.setSecretKey(key.getEncoded());
sign.setSignatureAlgorithm(SignatureMethod.HMAC_SHA1);
Document securedDocument = sign.build(doc, null, secHeader);
//some test that we can really sure we get what we want from WSS4J
XPathExpression xPathExpression =
getXPath("/soap:Envelope/soap:Header/wsse:Security/dsig:Signature/dsig:KeyInfo/" +
"wsse:SecurityTokenReference/wsse:KeyIdentifier[@ValueType=" +