I have couple of doubts on WSS4J. Please clarify ...
1. I am not finding any link to download wss4j. Can you please
redirect to the relevant link.
2. what is a security token reference
(org.apache.ws.security.message.token.SecurityTokenReference) and what
for
it is use in Apache WSS4J ?
3. when one should favor Apache XML Security Project like WSS4J over
IBM XSS, VeriSign TSIK etc. What level of maturity, support,
documentation we have for all these.
4. Can you please redirect me to a handon tutorial of implementing a
java program that implements xml signature in soap message and also
verifies that signature.
5. under what cases we get the below exception :
java.lang.RuntimeException: getNodeSet() called but no input data present
at org.apache.xml.security.signature.XMLSignatureInput.getNodeSet(Unknown
Source)
at org.apache.xml.security.signature.XMLSignatureInput.getNodeSet(Unknown
Source)
at
org.apache.xml.security.transforms.implementations.TransformC14NExclusive.enginePerformTransform(Unknown
Source)
at org.apache.xml.security.transforms.Transform.performTransform(Unknown
Source)
at
org.apache.xml.security.transforms.Transforms.performTransforms(Unknown
Source)
at
org.apache.xml.security.signature.Reference.getContentsAfterTransformation(Unknown
Source)
at
org.apache.xml.security.signature.Reference.dereferenceURIandPerformTransforms(Unknown
Source)
at org.apache.xml.security.signature.Reference.calculateDigest(Unknown
Source)
at org.apache.xml.security.signature.Reference.verify(Unknown Source)
at org.apache.xml.security.signature.Manifest.verifyReferences(Unknown
Source)
at org.apache.xml.security.signature.SignedInfo.verify(Unknown Source)
at
org.apache.xml.security.signature.XMLSignature.checkSignatureValue(Unknown
Source)
at
org.apache.xml.security.signature.XMLSignature.checkSignatureValue(Unknown
Source)
at SignedSoapVerify.testSoapVerify(SignedSoapVerify.java:81)
at SignedSoapVerify.main(SignedSoapVerify.java:100)
Thanks & Regards,
Kumar.
