XMLSignatureUtil (JBoss Application Server: Build 7.1.2.Final API)

java.lang.Object
- org.picketlink.identity.federation.core.util.XMLSignatureUtil

```
public class XMLSignatureUtil
extends Object
```
Utility for XML Signature Note: You can change the canonicalization method type by using the system property "picketlink.xmlsig.canonicalization"

Since:

Dec 15, 2008

Author:

Anil.Saldhana@redhat.com

Constructor Summary

Constructors
Constructor and Description

XMLSignatureUtil()

Constructors
Constructor and Description
`XMLSignatureUtil()`

Method Summary

Methods
Modifier and Type	Method and Description
`static X509Certificate`	`getX509CertificateFromKeyInfoString(String certificateString)` Given the X509Certificate in the keyinfo element, get a `X509Certificate`
`static void`	`marshall(Document signedDocument, OutputStream os)` Marshall the signed document to an output stream
`static void`	`marshall(SignatureType signature, OutputStream os)` Marshall a SignatureType to output stream
`static boolean`	`preCheckSignedInfo(Document doc)` Precheck whether the document that will be validated has the right signedinfo
`static void`	`setCanonicalizationMethodType(String canonical)` Set the canonicalization method type
`static void`	`setIncludeKeyInfoInSignature(boolean includeKeyInfoInSignature)` Use this method to not include the KeyInfo in the signature
`static Document`	`sign(Document doc, KeyPair keyPair, String digestMethod, String signatureMethod, String referenceURI)` Sign the root element
`static Document`	`sign(Document doc, Node nodeToBeSigned, KeyPair keyPair, String digestMethod, String signatureMethod, String referenceURI)` Sign a node in a document
`static Document`	`sign(Document doc, Node parentOfNodeToBeSigned, PrivateKey signingKey, X509Certificate certificate, String digestMethod, String signatureMethod, String referenceURI)` Sign a node in a document
`static Document`	`sign(SignatureUtilTransferObject dto)` Sign the root element
`static boolean`	`validate(Document signedDoc, Key publicKey)` Validate a signed document with the given public key

Methods inherited from class java.lang.Object
clone, equals, finalize, getClass, hashCode, notify, notifyAll, toString, wait, wait, wait

Constructor Detail
- XMLSignatureUtil
```
public XMLSignatureUtil()
```

Method Detail

setCanonicalizationMethodType
```
public static void setCanonicalizationMethodType(String canonical)
```
Set the canonicalization method type

Parameters:
canonical -

setIncludeKeyInfoInSignature
```
public static void setIncludeKeyInfoInSignature(boolean includeKeyInfoInSignature)
```
Use this method to not include the KeyInfo in the signature

Parameters:
includeKeyInfoInSignature -
Since:

v2.0.1

preCheckSignedInfo
```
public static boolean preCheckSignedInfo(Document doc)
```
Precheck whether the document that will be validated has the right signedinfo

Parameters:
doc -

Returns:

sign

public static Document sign(Document doc,
            Node parentOfNodeToBeSigned,
            PrivateKey signingKey,
            X509Certificate certificate,
            String digestMethod,
            String signatureMethod,
            String referenceURI)
                     throws ParserConfigurationException,
                            GeneralSecurityException,
                            MarshalException,
                            XMLSignatureException

Sign a node in a document

Parameters:: doc - Document; parentOfNodeToBeSigned - Parent Node of the node to be signed; signingKey - Private Key; certificate - X509 Certificate holding the public key; digestMethod - (Example: DigestMethod.SHA1); signatureMethod - (Example: SignatureMethod.DSA_SHA1); referenceURI -
Returns:: Document that contains the signed node
Throws:: XMLSignatureException; MarshalException; GeneralSecurityException; ParserConfigurationException

sign

public static Document sign(Document doc,
            Node nodeToBeSigned,
            KeyPair keyPair,
            String digestMethod,
            String signatureMethod,
            String referenceURI)
                     throws ParserConfigurationException,
                            GeneralSecurityException,
                            MarshalException,
                            XMLSignatureException

Sign a node in a document

Parameters:: doc -; nodeToBeSigned -; keyPair -; publicKey -; digestMethod -; signatureMethod -; referenceURI -
Returns:
Throws:: ParserConfigurationException; XMLSignatureException; MarshalException; GeneralSecurityException

sign

public static Document sign(Document doc,
            KeyPair keyPair,
            String digestMethod,
            String signatureMethod,
            String referenceURI)
                     throws GeneralSecurityException,
                            MarshalException,
                            XMLSignatureException

Sign the root element

Parameters:: doc -; signingKey -; publicKey -; digestMethod -; signatureMethod -; referenceURI -
Returns:
Throws:: GeneralSecurityException; XMLSignatureException; MarshalException

sign

public static Document sign(SignatureUtilTransferObject dto)
                     throws GeneralSecurityException,
                            MarshalException,
                            XMLSignatureException

Sign the root element

Parameters:: doc -; signingKey -; publicKey -; digestMethod -; signatureMethod -; referenceURI -
Returns:
Throws:: GeneralSecurityException; XMLSignatureException; MarshalException

validate

public static boolean validate(Document signedDoc,
               Key publicKey)
                        throws MarshalException,
                               XMLSignatureException

Validate a signed document with the given public key

Parameters:: signedDoc -; publicKey -
Returns:
Throws:: MarshalException; XMLSignatureException

marshall

public static void marshall(SignatureType signature,
            OutputStream os)
                     throws JAXBException,
                            SAXException

Marshall a SignatureType to output stream

Parameters:: signature -; os -
Throws:: SAXException; JAXBException

marshall

public static void marshall(Document signedDocument,
            OutputStream os)
                     throws TransformerException

Marshall the signed document to an output stream

Parameters:: signedDocument -; os -
Throws:: TransformerException

getX509CertificateFromKeyInfoString

public static X509Certificate getX509CertificateFromKeyInfoString(String certificateString)
                                                           throws ProcessingException

Given the X509Certificate in the keyinfo element, get a X509Certificate

Parameters:: certificateString -
Returns:
Throws:: ProcessingException

Class XMLSignatureUtil

Constructor Summary

Method Summary

Methods inherited from class java.lang.Object

Constructor Detail

XMLSignatureUtil

Method Detail

setCanonicalizationMethodType

setIncludeKeyInfoInSignature

preCheckSignedInfo

sign

sign

sign

sign

validate

marshall

marshall

getX509CertificateFromKeyInfoString