VenkatRam
Reputation: 51
To keep X509Data inside SecurityTokenReference
I have a requirement in java to digital sign the SOAP Body XML content and have decided to implement it using Apache Santuario library. The following libraries are in use.
wss4j-2.1.jar
xalan-2.7.2.jar
xmlsec-1.5.8.jar
The resultant SOAP Header should contain KeyInfo with following Secutiry elements.
<KeyInfo>
<SecurityTokenReference>
<X509Data>
<X509IssuerSerial>
<X509IssuerName>value</X509IssuerName>
<X509SerialNumber>value</X509SerialNumber>
</X509IssuerSerial>
</X509Data>
</SecurityTokenReference>
</KeyInfo>
But this api allows me to set X509Data part only under KeyInfo not directly inside SecurityTokenReference.
Please help me on how to achieve the same.
regards,
venkatram
Upvotes: 0
Views: 1015
Answers (1)
Colm O hEigeartaigh
Reputation: 1900
Look at the WSS4J unit tests, that do just that. For example:
Colm.
Upvotes: 0
Related Questions
- .NET SignedXml with a Specific Namespace Prefix ("ds:") and without X509Data
- WSSE - Sign an element inside soapenv:Header
- Adding Object tag to the X509Certificate2 in c#
- Soap body is not encrypted when X509 security implemented on WCF service
- How to sign xml with X509 cert, add digest value and signature to xml template
- Signing with xmlsec
- How do i sign a BinarySecurityToken in soap message
- How to sign XML using private key contained in smartcard for a web application?
- WS-Security: Differing namespaces for X509 certificates in BinarySecurityToken ValueType and EncodingType
- Getting a X509Certificate from a SOAP Security Header