xml-signature

问题 I'm receiving a SAML request via HTTP-redirect binding the content of the SAML request look like this {"SigAlg"=>"http://www.w3.org/2000/09/xmldsig#rsa-sha1", "SAMLRequest"=>"lVLLaoQwFP0VyT5jEqPG4AiFoSDMtNApXXQzxDxaQRObRDqfX3XoolAKXd7DPQ/uuXUQ4zDxo3tzc3zSH7MOMWkPe3DpcixzVVVQl4RBqoiCncEYEmkoY7k00hCQvGgfemf3gOwQSNoQZt3aEIWNC4RwCRGGiD6jkmPMs2KHUPYKksPi0lsRN+Z7jFPgafqpvejtbtQpSK7jYAPfsu3B7C13IvSBWzHqwKPk57vTkS+WfPIuOukG0NSbub9R/yaJELRfzUGzrhmtFut15qdeeheciY926K2u05toUz8sIu0huXd+FPFv9RXpFTTbKp

问题 Business Scenario: An Update can contain packages. A Package can contain changes. Each package must be approved by somebody. After approval, a package may not be changed. To be executed, an Update must have 100% approved packages. Development Thoughts: All Data is saved as XML files. Xml "Package" elements will be signed upon approval. Problem: No matter what I try and google up, all examples are always about signing a whole document or signing sub-elements with the same key for the whole

问题 I have a XML document.I am signing a part of document using xmlsignature. Before finding digest, I want to apply XSLT transform. According to what I read, XSLT converts an XML document to another format(can be XML also). Now I am confused that, where will be the transformed new document is avilable? How to retrieve the value from this newly created document if I want to show it to user? My XML Document <r1> <user>asd</user> <person>ghi</person> </r1> Code for Transformation Transform t=fac

问题 I have written the following .NET Framework 3.5 C# method which takes the location of an XML document and an object representation of an X509 digital certificate (with a private key) and returns the XML document as an object with the XML Signature (XMLDsig) embedded as first child element of the root. The thing is that I direly need to be able to do the exact same procedure with Java SE 6, but I have not written any Java in ages and have no clue where to begin. Can anyone provide the

问题 I have the following JAXB marshaller that is using a DOM result in order to add XML Digital Signature later on: JAXBContext jaxbContext = JAXBContext.newInstance(DataPDU.class); DataPDU myDataPDU = new DataPDU(); myDataPDU.setRevision("2.0.6"); // marshall the file Marshaller marshaller = jaxbContext.createMarshaller(); DOMResult domResult = new DOMResult(); marshaller.marshal(myDataPDU, domResult); // get the document list Document document = (Document) domResult.getNode(); // create the

问题 How to validate SAML assertion signatures? for (Assertion assertion : samlResponse.getAssertions()) { try { if (assertion.getSignature() != null) { Optional<X509Certificate> x509Certificate = assertion.getSignature().getKeyInfo().getX509Datas() .stream() .findFirst() .map(x509Data -> x509Data.getX509Certificates() .stream() .findFirst() .orElse(null) ); if (x509Certificate.isPresent()) { BasicX509Credential credential = new BasicX509Credential(); credential.setEntityCertificate(KeyInfoHelper

问题 Libarary xades4j . code as following: static { try { DocumentBuilderFactory dbf = DocumentBuilderFactory.newInstance(); dbf.setNamespaceAware(true); db = dbf.newDocumentBuilder(); } catch (ParserConfigurationException ex) { // ... ... } } Document doc = db.getNewDocument(); DataObjectDesc obj1 = new DataObjectReference( "file:///E:/doctosign/forxpath/ori_message.xml") .withCommitmentType(getCommitmentType()) .withTransform(new CanonicalXMLWithoutComments()) .withTransform(XPath2Filter

问题 Is it possible to Validate following XML document: <Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> <SignedInfo> <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" /> <SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256" /> <Reference URI=""> <Transforms> <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/> </Transforms> <DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256" /> <DigestValue>DsP5NLca

问题 I have an xml document. When I print the document using java libs I get the proper xml output. Then I sign the xml document using xmlsignatures. After signing, I try to print the document again. But this time the document is printed in such a way that all the Elements are JUMBLED . So I want to know whether xml signature modifies xml document? If yes then why? 回答1: Signature may modify your structure by canonicalizing it. This is necessary because your xml can have different valid

问题 I'm trying to add the saml 2.0 assertion node from the soap header example below - I came across the samlassertion type in the .net framework but that looks like it is only for saml 1.1. <S:Header> <To xmlns="http://www.w3.org/2005/08/addressing">https://rs1.greenwaymedical.com:8181/CONNECTGateway/EntityService/NhincProxyXDRRequestSecured</To> <Action xmlns="http://www.w3.org/2005/08/addressing">tns:ProvideAndRegisterDocumentSet-bRequest_Request</Action> <ReplyTo xmlns="http://www.w3.org/2005