[xmlsec] XMLSEC question

Aleksey Sanin aleksey at aleksey.com
Mon Dec 15 09:37:40 PST 2014


(hint: google is your friend)


On 12/14/14 10:11 AM, Alex Boese wrote:
> I'm very thankful for these wonderful libraries that you (and your team)
> has created. I'm very interested in creating some tools using the
> pythonic bindings for your libraries. Specifically, I'm trying to get
> the xml signing to work in order to verify xml document source and
> integrity.
> In doing this, I was trying to first create the path of what would be
> done using utilities opensll and xmlsec1. So, I'm able to get though
> what I'm imagining is the process of creating the public and private pem
> certificates. Each seems verifiable through openssl.
> Following that, I take your demo xml document from your site to use,
> just to be absolutely certain the xml signature template is correct.
> From this document and certs, I'm able to sign an XML document, but I'm
> never able to verify that the signature is good...that consistently fails.
> Could I ask for a list of commands using openssl and xmlsec1 that do the
> full process of key creation, certs, signature of xml document and
> finally xml signature verification? It would help greatly to know what
> the documented working process is, so that I can determine whether the
> issue is my own mistake (which is probably the greater likelihood), or
> something more systemic which could be preventing things from working
> correctly.
> Thank you in advance.
> -Alex

More information about the xmlsec mailing list