[xmlsec] X509 Certs in Signature

James munch1e02 at yahoo.com
Tue Nov 30 05:48:19 PST 2004


Trying to use the X509 certs that are added to the signature node. 
As an example
<Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
<SignedInfo>
<CanonicalizationMethod
Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
<SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
<Reference URI="">
<Transforms>
<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
</Transforms>
<DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
<DigestValue>97bHajoOPsKoNWTbDoceaCYTmZk=</DigestValue>
</Reference>
</SignedInfo>
<SignatureValue>Lo6pxFLN1dbvD5LOB4+i8vB6A1gAZtVZ+jNDwc3ubkrRwp8XPSPByWA8GrtEe6xp
xV6PdqsfAgsHl0mM3zivyvHsJDHSUZ61bKy6MUtKaTG/DhFG/1JzWCEBSyWgSyt6
d2MP5uhaQOAC+VNm8N9KQ+FOLFVtCe7cW9sH1jFnzWk=</SignatureValue>
<KeyInfo>
<X509Data>
<X509Certificate>MIICRDCCAa2gAwIBAgIBADANBgkqhkiG9w0BAQUFADBGMQswCQYDVQQGEwJVUzEY
MBYGA1UEChMPVS5TLiBHb3Zlcm5tZW50MQswCQYDVQQLEwJSTDEQMA4GA1UEAxQH
dHNfc
......
</X509Certificate>
</X509Data>
</KeyInfo>
</Signature>

Is there a simple way this can be done? As most of the examples show the X509
cert in file (PEM) format, which is the same as above. Looking through the
API's I do not see one. Any one got any suggestions?

Thanks in advance,
James


		
__________________________________ 
Do you Yahoo!? 
Read only the mail you want - Yahoo! Mail SpamGuard. 
http://promotions.yahoo.com/new_mail 



More information about the xmlsec mailing list