Package com.righettod.jse6xmlsig.external

Source Code of com.righettod.jse6xmlsig.external.KeyValueKeySelector

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
package com.righettod.jse6xmlsig.external;

import java.security.KeyException;
import java.security.PublicKey;
import java.util.List;

import javax.xml.crypto.AlgorithmMethod;
import javax.xml.crypto.KeySelector;
import javax.xml.crypto.KeySelectorException;
import javax.xml.crypto.KeySelectorResult;
import javax.xml.crypto.XMLCryptoContext;
import javax.xml.crypto.XMLStructure;
import javax.xml.crypto.dsig.SignatureMethod;
import javax.xml.crypto.dsig.XMLValidateContext;
import javax.xml.crypto.dsig.keyinfo.KeyInfo;
import javax.xml.crypto.dsig.keyinfo.KeyValue;

/**
*
* Obtained from
* http://today.java.net/pub/a/today/2006/11/21/xml-signature-with-
* jsr-105.html#resources
*
* @author Young Yang (http://www.java.net/pub/au/484)
*
*/
public class KeyValueKeySelector extends KeySelector {
  @SuppressWarnings("rawtypes")
  @Override
  public KeySelectorResult select(KeyInfo keyInfo, KeySelector.Purpose purpose, AlgorithmMethod method, XMLCryptoContext context) throws KeySelectorException {
    if (keyInfo == null) {
      throw new KeySelectorException("KeyInfo object is null!");
    }
    SignatureMethod sm = (SignatureMethod) method;
    List list = keyInfo.getContent();

    for (int i = 0; i < list.size(); i++) {
      XMLStructure xmlStructure = (XMLStructure) list.get(i);
      if (xmlStructure instanceof KeyValue) {
        PublicKey pk = null;
        try {
          pk = ((KeyValue) xmlStructure).getPublicKey();
        } catch (KeyException ke) {
          throw new KeySelectorException(ke);
        }
        // check if the signature algorithm is compatible
        // with the public algorithm
        if (!algEquals(sm.getAlgorithm(), pk.getAlgorithm())) {
          throw new KeySelectorException("Signature Algorithm in not compatible with key algorithm!");
        }
        // check if the purpose is for verify
        if (purpose != KeySelector.Purpose.VERIFY) {
          throw new KeySelectorException("The public key is for validation only in XML signature!");
        }
        // check if the XMLCryptoContext is a XMLValidateContext
        if (!(context instanceof XMLValidateContext)) {
          throw new KeySelectorException("The context must be for validation!");
        }
        return new SimpleKeySelectorResult(pk);
      }
    }
    throw new KeySelectorException("No KeyValue element found in KeyInfo!");
  }

  @SuppressWarnings("static-method")
  private boolean algEquals(String sigAlg, String keyAlg) {
    if (keyAlg.equalsIgnoreCase("DSA") && sigAlg.equalsIgnoreCase(SignatureMethod.DSA_SHA1)) {
      return true;
    } else if (keyAlg.equalsIgnoreCase("RSA") && sigAlg.equalsIgnoreCase(SignatureMethod.RSA_SHA1)) {
      return true;
    } else {
      return false;
    }
  }
}
TOP

Related Classes of com.righettod.jse6xmlsig.external.KeyValueKeySelector

  • com.righettod.jse6xmlsig.BaseSample
  • javax.xml.crypto.XMLStructure
  • java.security.PublicKey
  • javax.xml.crypto.dsig.SignatureMethod
  • javax.xml.crypto.KeySelectorException
  • java.util.List
    • TOP
    Copyright © 2018 www.massapi.com. All rights reserved.
    All source code are property of their respective owners. Java is a trademark of Sun Microsystems, Inc and owned by ORACLE Inc. Contact coftware#gmail.com.