[xmlsec] whitespaces inside the XML Signature element
asalcianu at itasoftware.com
Wed May 9 08:55:11 PDT 2007
I'm trying to generate XML signatures that are "resistent" to
changes in the whitespaces used for indentation. I've managed to
make my signatures resistent to some changes in the indentation
(e.g., by using a whitespace-stripping XSLT transform).
Still, I don't see how I can achieve resistance to whitespaces used
for indentation inside the Signature element. E.g., I want to
preserve the signature validity regardless of the number of spaces
before <SignedInfo> in the example below.
The canonicalization alg. takes care of some of the whitespaces
(e.g., the ones between attributes), but, as explained at
all canonicalization algs. "are sensitive to whitespace outside tags."
The reason I'm trying to do this is that I consider indentation
whitespaces irrelevant for the actual document, and I think they
should be irrelevant for the signature.
More information about the xmlsec