Re: question on data directory

Anthony, this list discusses two libraries implementing standards concerning signature and encryption of XML documents. One java and one C++ library. AFAIK there is no obvious executable. Neither any preset data directroy is to be found. Perhaps you confused the mailing lists? Or are you workin

Re: Enveloped suggestions

Heiner Westphal wrote: ... (ever tried to RSA-sign with an DSA-pubkey?). ... Stop, no! I did not even try to sign anything using a pubkey (would be pretty pointless, anyone can, but only one could check the sig, hehe). But I tried to do an SHA-1/RSA signature using an DSA keypair, which did

Re: Enveloped suggestions

Javadocs are very useful though. I've done enveloping signatures only, which was straight forward starting with the right example, adding some code to handle DSA/RSA based pubkeys differently (ever tried to RSA-sign with an DSA-pubkey?). Regards, Heiner Regards Marty -----Original Mess

Re: Enveloped suggestions

Martin, the canonicalizer cannot know, if the may contain other elements only, or if mixed content is allowed. So there is no way to tell the difference between significant and non significant whitespace. Else the canonicalization would remove non significant whitespace, I would guess. Just my

SOLVED: Re: Somone... help... please ...

nks n god bless :) -Original Message----- From: Heiner Westphal [mailto:[EMAIL PROTECTED] Sent: 09 March 2005 19:54 To: security-dev@xml.apache.org Subject: Re: Somone... help... please ... Ritesh, leaving the namepaceAware on true and use some ugly XPath like "//*[local-name()='Header

Re: Somone... help... please ...

java:178) at com.syntegra.xml.dsig.sign.XMLDSig.main(XMLDSig.java:78) Which means Heiner, its not working Best Always, Ritesh Aswaney * Mobile: +44 7909540132 ---

Re: Somone... help... please ...

Ritesh, leaving the namepaceAware on true and use some ugly XPath like "//*[local-name()='Header']/*[local-name()='SenderInfo']/*[local-name()='SenderID']" will match the node you would have called "//Header/SenderInfo/SenderID" in absence of namespaces. Sadly it matches nodes even in the wrong nam

Re: enveloping signature

Axelle, see my comments below. Axelle wrote: Thanks very much for your reply. It actually answers my next post too :-) So, the way to do it is to use importNode() ? However, I'm not really sure to understand the way it works: Document signedDoc = documentBuilder.newDocument(); Okay, we cre

Re: Enveloping signature: wrong document err.

Axelle wrote: [ snip ] Wow, you are fast. Sounds familiar. Took me some time to sort it out once upon a time... // create the ds:Object Document doc = db.newDocument(); ObjectContainer obj = new ObjectContainer(input); Instead of: doc.appendChild(obj.getElement()); use: boolean deepCopy = true; Nod

Re: enveloping signature

Axelle wrote: [ snip ] - how can I build an enveloping signature ? (not an enveloped one). I once used enveloping sigs in a project. I pulled the essential code into a testcase and attached it. The exception handling is left to junit in this case. The build.xml simply creates a keystore with priva

Re: sun.security.util.DerValue not available on IBM SDKs

Davanum Srinivas wrote: would you be able to compile a fresh version of xml-security from our cvs? if so, try replacing sun's DerValue with com.ibm.security.util.DerValue and see if that works, if it does, i am willing to patch the code using java reflection api to switch between the two. OK. I get

Re: sun.security.util.DerValue not available on IBM SDKs

hip to the sender :) C=DE,O=Secret GmbH, OU=development,CN=TestSecret 7711026923132787338 aTTp+EejjS30eFH+UObfuscaTeME= Regards, Heiner Heiner Westphal wrote: Hello! Im using xml-security java 1.1.0 on an AIX with IBM SDK

sun.security.util.DerValue not available on IBM SDKs

Hello! Im using xml-security java 1.1.0 on an AIX with IBM SDK 1.4.1. In org.apache.xml.security.keys.content.x509.XMLX509SKI an object of class sun.security.util.DerValue is used, which should not be according to http://java.sun.com/products/jdk/faq/faq-sun-packages.html When I'm trying to read a