You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@santuario.apache.org by "ASF GitHub Bot (JIRA)" <ji...@apache.org> on 2016/11/04 08:01:58 UTC
[jira] [Commented] (SANTUARIO-458) Add signature configuration
options to control generating Id attributes and adding default
transformations
[ https://issues.apache.org/jira/browse/SANTUARIO-458?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15635600#comment-15635600 ]
ASF GitHub Bot commented on SANTUARIO-458:
------------------------------------------
GitHub user spark404 opened a pull request:
https://github.com/apache/santuario-java/pull/9
SANTUARIO-458 Configurable Id attribute and Transform generation
Note that this is build on the patch proposed with SANTUARIO-453 and includes those changes in this PR.
More details in https://issues.apache.org/jira/browse/SANTUARIO-458
You can merge this pull request into a Git repository by running:
$ git pull https://github.com/spark404/santuario-java SANTUARIO-458
Alternatively you can review and apply these changes as the patch at:
https://github.com/apache/santuario-java/pull/9.patch
To close this pull request, make a commit to your master/trunk branch
with (at least) the following in the commit message:
This closes #9
----
commit f6cf8afe54d993cdd818ed68dcf105abaacbebc7
Author: Hugo Trippaers <ht...@schubergphilis.com>
Date: 2016-10-11T16:39:15Z
SANTUARIO-453 Use a map in the properties to select the signature validation certificate for a KeyName
commit d1bdddbb4d34f761c1072d31c596c2071c60bf6c
Author: Hugo Trippaers <hu...@trippaers.nl>
Date: 2016-10-12T18:53:06Z
SANTUARIO-453 Add German translations to the resource bundle
commit 1e59484ac5d28e16197ea61029d64a099ef6245c
Author: Hugo Trippaers <hu...@trippaers.nl>
Date: 2016-10-12T19:03:11Z
SANTUARIO-453 Prevent the KeyNameMap from being manipulated directly
commit 70e6714a634321d4243202698f66234a23ad103a
Author: Hugo Trippaers <hu...@trippaers.nl>
Date: 2016-10-12T20:15:02Z
SANTUARIO-453 Add test coverage for SecurityTokenFactoryImpl
commit bd663c140da8923072ace1d0e7f612bb316b7d17
Author: Hugo Trippaers <hu...@trippaers.nl>
Date: 2016-10-12T20:29:00Z
SANTUARIO-453 Overenthousiastic refactoring
commit 196e59652db10da829789da67af3aa7bb3a148a7
Author: Hugo Trippaers <ht...@schubergphilis.com>
Date: 2016-11-04T07:52:25Z
SANTUARIO-458 Add configuration options to control generation of Id attributes and defaullt Transform
----
> Add signature configuration options to control generating Id attributes and adding default transformations
> ----------------------------------------------------------------------------------------------------------
>
> Key: SANTUARIO-458
> URL: https://issues.apache.org/jira/browse/SANTUARIO-458
> Project: Santuario
> Issue Type: New Feature
> Components: Java
> Reporter: Hugo Trippaers
> Assignee: Colm O hEigeartaigh
> Priority: Minor
> Fix For: Java 2.1.0
>
>
> I'm building an client for an API that has special requirements with regards to the XML messages that are excepted. Some of these requirements were not possible to configure with the current XMLSecurityProperties for the STAX interface.
> The interface required that the document is schema valid and that means in this case that the elements are not allowed to have an "Id" attribute on the document, signature and key info elements.
> The interface required that the Reference URI is empty when the entire message is signed.
> The interface requires that when the transform "<Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature" />" is present, the digest transform is left empty to indicate the "default" transform.
> I've implemented new XMLSecurityProperties to be able to configure these features. With defaults set to ensure current behaviour.
> private boolean signatureGenerateIds = true;
> private boolean signatureIncludeDigestTransform = true;
> private String signatureDefaultCanonicalizationTransform;
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)