This would be a great scenario to figure out for my team. We have a java action that makes a JDBC connection to HS2. Can we somehow use the local token file in conjunction with the JDBC connection string to create a secure connection. I can't get that to work.
Instead I'm using JAAS, which requires have a keytab file accessible on every node. I'd like to get away from that.