Examples of javax.xml.crypto.dsig.dom.DOMValidateContext

javax.xml.crypto.dsig.dom.DOMValidateContext
A DOM-specific {@link XMLValidateContext}. This class contains additional methods to specify the location in a DOM tree where an {@link XMLSignature} is to be unmarshalled and validated from.
Note that the behavior of an unmarshalled XMLSignature is undefined if the contents of the underlying DOM tree are modified by the caller after the XMLSignature is created.
Also, note that DOMValidateContext instances can contain information and state specific to the XML signature structure it is used with. The results are unpredictable if a DOMValidateContext is used with different signature structures (for example, you should not use the same DOMValidateContext instance to validate two different {@link XMLSignature} objects). @author Sean Mullan @author JSR 105 Expert Group @see XMLSignatureFactory#unmarshalXMLSignature(XMLValidateContext)

        Document doc = XMLUtils.createDocumentBuilder(false, false).parse(new File(dir, fn));
        Element sigElement = getSignatureElement(doc);
        if (sigElement == null) {
            throw new Exception("Couldn't find signature Element");
        }
        DOMValidateContext vc = new DOMValidateContext(ks, sigElement);
        vc.setBaseURI(dir.toURI().toString());
        return vc;
    }

View Full Code Here

    }


    public boolean validate(String fn, KeySelector ks, URIDereferencer ud)
        throws Exception {


        DOMValidateContext vc = getValidateContext(fn, ks);
        if (ud != null) {
            vc.setURIDereferencer(ud);
        }


        return validate(vc);
    }

View Full Code Here

        Document doc = XMLUtils.createDocumentBuilder(false, false).parse(new File(dir, file));
        Element sigElement = SignatureValidator.getSignatureElement(doc);
        if (sigElement == null) {
            throw new Exception("Couldn't find signature Element");
        }
        DOMValidateContext vc = 
            new DOMValidateContext(new KeySelectors.KeyValueKeySelector(), sigElement);
        vc.setBaseURI(dir.toURI().toString());


        vc.setProperty("org.apache.jcp.xml.dsig.secureValidation", Boolean.FALSE);
        boolean coreValidity = validator.validate(vc);
        assertTrue("Signature failed core validation", coreValidity);
        
        vc.setProperty("org.apache.jcp.xml.dsig.secureValidation", Boolean.TRUE);
        
        Element manifestElement =
            (Element) doc.getElementsByTagName("Manifest").item(0);
        vc.setIdAttributeNS(manifestElement, null, "Id");
        
        try {
            boolean valid = validator.validate(vc);
            System.out.println("Valid: " + valid);
            fail("Failure expected when secure validation is enabled");

View Full Code Here

                } else {
                    assertNotNull(ref.getDereferencedData());
                    assertNotNull(ref.getDigestInputStream());
                    assertTrue(digestInputEqual(ref));
                }
                validateContext = new DOMValidateContext
                    (TestUtils.getPublicKey(CRYPTO_ALGS[i]), 
                    doc.getDocumentElement());
                validateContext.setURIDereferencer(dereferrer);


                if (cache) {

View Full Code Here

            Document doc = TestUtils.newDocument();
            signContext = new DOMSignContext(SIGN_KEYS[i], doc);
            signContext.setURIDereferencer(ud);
            sig.sign(signContext);
            TestUtils.validateSecurityOrEncryptionElement(doc.getDocumentElement());
            validateContext = new DOMValidateContext
                (VALIDATE_KEYS[i], doc.getDocumentElement());
            validateContext.setURIDereferencer(ud);
            if (sig.validate(validateContext) == false) {
                status = false;
                TestUtils.dumpDocument(doc, "signatureTest_out"+i+".xml");

View Full Code Here

        StringWriter sw = new StringWriter();
        dumpDocument(doc, sw);
        System.out.println(sw);
*/


        DOMValidateContext dvc = new DOMValidateContext
            (VALIDATE_KEYS[1], doc.getDocumentElement());
        XMLSignature sig2 = fac.unmarshalXMLSignature(dvc);


        if (sig.equals(sig2) == false) {
            throw new Exception

View Full Code Here

        Document doc = TestUtils.newDocument();
        XMLSignContext signContext =
            new DOMSignContext(TestUtils.getPrivateKey("DSA", 2048), doc);
        signContext.setURIDereferencer(ud);
        sig.sign(signContext);
        XMLValidateContext validateContext = new DOMValidateContext
            (TestUtils.getPublicKey("DSA", 2048), doc.getDocumentElement());
        validateContext.setURIDereferencer(ud);
        assertTrue(sig.validate(validateContext));
    }

View Full Code Here

            //
            // PART 2 : Validating the detached signature
            //
    
            // Create a XMLValidateContext & set the DSAPublicKey for validating
            XMLValidateContext vc = new DOMValidateContext(kp.getPublic(),
                doc.getDocumentElement());
            vc.setURIDereferencer(ud);
    
            // Validate the Signature (generated above)
            boolean coreValidity = signature.validate(vc); 
    
            // Check core validation status

View Full Code Here

            "merlin-xmldsig-twenty-three");
        Document doc = docBuilder.parse(new File(dir, "signature.xml"));
        NodeList nl = doc.getElementsByTagName("KeyInfo");
        try {
            stuff = factory.unmarshalXMLSignature
            (new DOMValidateContext(TestUtils.getPublicKey("RSA"), nl.item(0)));
            fail("Should throw a MarshalException for non-XMLSignature inputs"); 
        } catch (MarshalException ex) {}
        
        nl = doc.getElementsByTagName("Signature");
        try {
            stuff = factory.unmarshalXMLSignature
            (new DOMValidateContext(TestUtils.getPublicKey("DSA"), nl.item(0)));
            assertNotNull(stuff);
        } catch (MarshalException ex) {
            fail("Unmarshal failed: " + ex.getMessage());
            ex.printStackTrace();
        }

View Full Code Here

        DOMSignContext dsc = new DOMSignContext(signingKey, envelope);


        sig.sign(dsc);
        TestUtils.validateSecurityOrEncryptionElement(envelope.getFirstChild());


        DOMValidateContext dvc = new DOMValidateContext
            (kvks, envelope.getFirstChild());
        XMLSignature sig2 = fac.unmarshalXMLSignature(dvc);


        assertTrue(sig.equals(sig2));

View Full Code Here

0 1 2 3 4 5 6 7 8 9

TOP

Related Classes of javax.xml.crypto.dsig.dom.DOMValidateContext

br.net.woodstock.rockframework.security.sign.impl.XMLSigner

com.cedarsoft.crypt.xml.XmlSignatureSupport

com.cedarsoft.utils.crypt.xml.XmlSignatureSupport

com.cloudseal.client.saml2.AuthResponseValidator

com.cloudseal.client.saml2.AuthResponseValidatorImpl

com.cloudseal.client.saml2.SamlValidatorImpl

com.onelogin.saml.Response

com.righettod.jse6xmlsig.BaseSample

com.sun.xml.wss.impl.dsig.SignatureProcessor

com.sun.xml.wss.saml.assertion.saml11.jaxb10.Assertion

All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.