mace-opensaml-users - Re: [OpenSAML] Remove Namespace from Signature
Subject: OpenSAML user discussion
List archive
- From: Brent Putman <>
- To:
- Subject: Re: [OpenSAML] Remove Namespace from Signature
- Date: Wed, 02 Jun 2010 17:42:32 -0400
On 6/2/2010 7:12 AM, Chad La Joie wrote:
> No, the OpenSAML library isn't responsible for creating those
> signatures, that is delegated to the Apache XML security library. And
> to the best of my knowledge there is no way to change the prefix.
>
I vaguely remembered something about this coming up on the xmlsec list
and looked it up.
It's largely undocumented, but (supposedly, I haven't tested) you can
control this either:
- declaratively, by editing the PrefixMappings section in their
config.xml - which by default in the xmlsec jar at
org/apache/xml/security/resource/config.xml, but you can point to a
different one via a system property
- programatically, by calling their static method
org.apache.xml.security.utils.ElementProxy.setDefaultPrefix(namespaceURI,
prefix).
The latter has to be done after the Apache Init.init(), which in
OpenSAML means after you call the DefaultBootstrap.bootstrap(), which
calls Apache init. There are some comments to that effect in their
default config.xml.
See:
http://permalink.gmane.org/gmane.text.xml.security.devel/684
I have never tried with OpenSAML, so no promises that it will work as
expected ... good luck!
--Brent
- Remove Namespace from Signature, anyz, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, Chad La Joie, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, anyz, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, Brent Putman, 06/02/2010
- Re: [OpenSAML] Remove Namespace from Signature, Chad La Joie, 06/02/2010
Archive powered by MHonArc 2.6.16.