You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@camel.apache.org by "Claus Ibsen (JIRA)" <ji...@apache.org> on 2010/03/09 06:43:45 UTC

[jira] Commented: (CAMEL-2527) Addition of DSL to sign and verify exchanges with Digital signatures.

    [ https://issues.apache.org/activemq/browse/CAMEL-2527?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=58104#action_58104 ] 

Claus Ibsen commented on CAMEL-2527:
------------------------------------

Stephen well done.

I got a few initial comments

We *must* not rely on any SUN code as Camel also supports IBM platforms etc.

eg this is not allowed
+import sun.misc.BASE64Encoder;



> Addition of DSL to sign and verify exchanges with Digital signatures.
> ---------------------------------------------------------------------
>
>                 Key: CAMEL-2527
>                 URL: https://issues.apache.org/activemq/browse/CAMEL-2527
>             Project: Apache Camel
>          Issue Type: Improvement
>          Components: camel-core, camel-spring
>            Reporter: Stephen Gargan
>            Priority: Minor
>             Fix For: 2.3.0
>
>         Attachments: signature-core.patch, signature-spring.patch, signature-wiki.txt
>
>
> I've put together and extension to the DSL that will enrich exchanges with a Digital Signature cacluated using the payload. The signature is stored in a property of the exchange and can be used to verify it at a later stage. It uses the JCE under the covers and It adds the constructs 'sign' and 'verify' to the dsl. Basically it will allows you to do the following
> from("direct:sign").sign(somePrivateKey).to("direct:signaturetest");
> and later 
> from("direct:signaturetest").verify(somePublicKey).to(...);
> Keys can be supplied from keystores or in message headers for dynamic signing, the attached wiki page explains the feature set in more detail. 
> The patch contains a binary keystore so to apply it you should run 
> patch -p0 --binary -i signature-core.patch
> Give it a try and see what you think. I'm also in the processor finishing up a CryptoDataFormat that uses the JCE to encrypt and decrypt exchange payloads, its about 90% done and I should get it out soon.

-- 
This message is automatically generated by JIRA.
-
You can reply to this email to add a comment to the issue online.