[xmlsec] X509 Retrieval method without a root certificate
aleksey at aleksey.com
Wed May 14 09:05:05 PDT 2008
Well, sorry but this is not possible w/o source code changes.
Signature verifications includes cert verification and there
is no way to disable it.
Frank Gross wrote:
> I would like to encrypt or validate a document using the X509 retrieval
> method but without setting a root certificate in the trusted list of the
> key manager. Is this possible ? Because I tried with flag
> XMLSEC_KEYINFO_FLAGS_X509DATA_DONT_VERIFY_CERTS in the xmlSecEncCtx
> structure and in the corresponding keyInfoWriteCtx and keyInfoReadCtx
> structure, but it doesn't work.
> xmlsec mailing list
> xmlsec at aleksey.com
More information about the xmlsec