mace-opensaml-users - Re: [OpenSAML] Remove Namespace from Signature
Subject: OpenSAML user discussion
List archive
- From: Chad La Joie <>
- To:
- Subject: Re: [OpenSAML] Remove Namespace from Signature
- Date: Wed, 02 Jun 2010 07:12:20 -0400
- Organization: Itumi, LLC
No, the OpenSAML library isn't responsible for creating those signatures, that is delegated to the Apache XML security library. And to the best of my knowledge there is no way to change the prefix.
On 6/2/10 7:06 AM, anyz wrote:
I have successfully signed assertion as given at
https://spaces.internet2.edu/display/OpenSAML/OSTwoUserManJavaDSIG. The
output of signed assertion is like given below:
<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#";>
<ds:SignedInfo>
<ds:CanonicalizationMethod
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/
<http://www.w3.org/2001/10/xml-exc-c14n#"/>>
<ds:SignatureMethod
Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/
<http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>>
<ds:Reference URI="#ID31445821-713c-4d49-a090-26d57e3b9ecc">
<ds:Transforms>
<ds:Transform
Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/
<http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>>
<ds:Transform
Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#";><ec:InclusiveNamespaces
<http://www.w3.org/2001/10/xml-exc-c14n#";><ec:InclusiveNamespaces>
xmlns:ec="http://www.w3.org/2001/10/xml-exc-c14n#"; PrefixList="adfs ds
saml xs xsi"/></ds:Transform>
</ds:Transforms>
<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/
<http://www.w3.org/2000/09/xmldsig#sha1"/>>
<ds:DigestValue>qAvhr4f4/MzaLHUbXbDgwa9xWjc=</ds:DigestValue>
</ds:Reference>
</ds:SignedInfo>
<ds:SignatureValue>blahblablbah</ds:SignatureValue>
<ds:KeyInfo>
<ds:KeyValue>
<ds:RSAKeyValue>
<ds:Modulus>blahbalahblah</ds:Modulus>
<ds:Exponent>AQAB</ds:Exponent>
</ds:RSAKeyValue>
</ds:KeyValue>
<ds:X509Data>
<ds:X509Certificate>blahblahblab</ds:X509Certificate>
</ds:X509Data>
</ds:KeyInfo>
</ds:Signature>
Is it possible to remvoe the name space in Signature tag and hence the
prefix "ds" from all the child tags. I tried creating Signature object
with custom name space and prefix through builder but it didn't effect
the out put. I want to remove namespace and hence prefix "ds" from all
child tags.
Thanks
--
Chad La Joie
http://itumi.biz
trusted identities, delivered
- Remove Namespace from Signature, anyz, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, Chad La Joie, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, anyz, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, Brent Putman, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, Chad La Joie, 06/02/2010
Archive powered by MHonArc 2.6.16.