EldoS | Feel safer!

Software components for data protection, secure storage and transfer

TElXMLC14NTransform class issues

Also by EldoS: CallbackRegistry
A component to monitor and control Windows registry access and create virtual registry keys.
#33939
Posted: 07/08/2015 03:04:59
by Maris Gabalins (Standard support level)
Joined: 07/06/2015
Posts: 6

Hi,

I evaluating SecureBlackbox XML and trying to create Signed XML. Using Exclusive canonicalization .
Code
       TElXMLC14NTransform transform= new TElXMLC14NTransform;
        transform.setCanonicalizationMethod(3);
        transform.setInclusiveNamespacesPrefixList("wsse soap");
        Ref.getTransformChain().add(new TElXMLC14NTransform());


Generated signature looks like:

Code
            <ds:SignedInfo>
               <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#" xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#">
                  <ec:InclusiveNamespaces PrefixList="soap"/>
               </ds:CanonicalizationMethod>
               <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
               <ds:Reference URI="#TS-d85d7439-ab77-46b4-b747-f2c060ca5b1d">
                  <ds:Transforms>
                     <ds:Transform Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315"/>
                  </ds:Transforms>
                  <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
                  <ds:DigestValue>sPqhT/c4bb4RtgZeSCJB3z9GbBs=</ds:DigestValue>
               </ds:Reference>
            </ds:SignedInfo>


I am not seeing prefix list passed to XML(for reference part) and seems like also transformation URI should be different.

Any quick comment, what I am doing wrong ?

Thanks in advance
Sincerely
Maris

P.S. Sorry, if I have got formatting wrong, first time here.
#33940
Posted: 07/08/2015 04:35:31
by Dmytro Bogatskyy (EldoS Corp.)

Thank you for contacting us.

Quote
TElXMLC14NTransform transform= new TElXMLC14NTransform;
...
Ref.getTransformChain().add(new TElXMLC14NTransform());

In the transform chain you are adding a new instance of TElXMLC14NTransform class, but you need to add the transform variable that you have initialized already.

By the way, what component are you testing? TElXMLSigner?
As you are signing a SOAP message, you might be interested in SOAP components. The SOAP sample can be found in <SecureBlackbox>\Samples\<language>\Desktop\SecureSOAP directory.
#33946
Posted: 07/08/2015 06:25:12
by Maris Gabalins (Standard support level)
Joined: 07/06/2015
Posts: 6

Oh,

Thanks. Now it seems unbelievable, that I was staring at it all the time. Now it is, of course, working.

I indeed have need to exchange SOAP messages with WS security (e.g. request to Microsoft STS service for a ticket, afterwards using this ticket in SOAP message). It was plan to look at Your SOAP example as next after this, however I cannot find SOAP examples in download archive. Is there some other place where samples are available ?

Sincerely
Maris
#33947
Posted: 07/08/2015 06:28:50
by Vsevolod Ievgiienko (EldoS Corp.)

SOAP samples can be found in \secbboxjava\Samples\XMLBlackbox folder.
#33950
Posted: 07/08/2015 09:32:44
by Maris Gabalins (Standard support level)
Joined: 07/06/2015
Posts: 6

Ok, found a sample, maybe one other stupid question - is there TElXMLSOAPClient documentation available - I can not find it in web or in downloaded distribution.

Thanks in advance
Sincerely
Maris
#33951
Posted: 07/08/2015 09:46:24
by Dmytro Bogatskyy (EldoS Corp.)

Hi,

Quote

Ok, found a sample, maybe one other stupid question - is there TElXMLSOAPClient documentation available - I can not find it in web or in downloaded distribution.

The help is slightly behind the schedule. We are sorry for the inconvenience.
As for TElXMLSOAPClient component please refer to XMLBlackbox\SOAPClient sample. Please feel free to ask more specific questions if they exist after checking the sample.
Also by EldoS: Solid File System
A virtual file system that offers a feature-rich storage for application documents and data with built-in compression and encryption.

Reply

Statistics

Topic viewed 1059 times

Number of guests: 1, registered members: 0, in total hidden: 0




|

Back to top

As of July 15, 2016 EldoS Corporation will operate as a division of /n software inc. For more information, please read the announcement.

Got it!