On 3/28/11 5:44 PM, "Bill Speirs" <[email protected]> wrote: >Thanks for the reply. I'm running a slightly modified version of the >sample code that uses my "raw" (not a certificate) DSA key and my XML >file. I set XSEC_DEBUG_FILE in my environment to a world writable >file, but it never wrote anything to that file. Do I need to trigger >this debug output somehow?
No. >I have signing & verifying working; however, there is something >strange. If I ONLY apply the TRANSFORM_C14N_WITH_COMMENTS transform, >the signature does not work. If I apply TRANSFORM_ENVELOPED_SIGNATURE, >then TRANSFORM_C14N_WITH_COMMENTS it works, but the other way around >does not. You can't exactly "guess" about whether to include an enveloped transform. If it's an enveloped signature, it obviously won't work without that. I don't know of any reason the order would matter. >Any thoughts on why I cannot use TRANSFORM_C14N_WITH_COMMENTS without >TRANSFORM_ENVELOPED_SIGNATURE? What am I missing/not understanding >here? Well, I guess that might suggest confusion over what enveloped signatures are. If you need it, you can't really omit it. -- Scott
