If you use the standard JSR 105 API (javax.xml.crypto), then there is an X509KeySelector that we use for testing that should be close to what you want and can be adapted to your needs.
See: http://svn.apache.org/viewvc/santuario/xml-security-java/trunk/src/test/java/javax/xml/crypto/test/dsig/X509KeySelector.java?view=markup --Sean On 8/8/12 10:13 AM, Colm O hEigeartaigh wrote: > > As far as I know Santuario does not provide this functionality. You could > take a > look at the Merlin class in WSS4J which does this kind of functionality: > > http://svn.apache.org/viewvc/webservices/wss4j/trunk/src/main/java/org/apache/ws/security/components/crypto/Merlin.java?view=markup > > Colm. > > On Tue, Aug 7, 2012 at 4:33 PM, Pushpalanka Jayawardhana > <[email protected] <mailto:[email protected]>> wrote: > > Hi devs, > > I am trying to validate the signed key and certificates to be trusted.For > trusted parties, their public keys are imported to the trusted keystore. > Now > I want to check whether the sent key is present in the trusted store. > Can someone point me to a relevant resource to look at. I could see that > 'The KeyStoreResolver is able to retrieve Certificates from a JAVA > KeyStore > object. This KeyStoreResolver is constructed from an open JAVA KeyStore.' > in > FAQ. But no example were found. > > Found this which has done this in raw Java > > <http://stackoverflow.com/questions/4487445/how-to-check-whether-a-certificate-is-present-in-a-keystore>. > Wonder whether Santuario has made this easier. > > > -- > Pushpalanka Jayawardhana > > > > > > -- > Colm O hEigeartaigh > > Talend Community Coder > http://coders.talend.com >
