-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Hello David,
WCR wrote: > I'm beginning to get this now, but I still have a problem :-(( > > How do I obtain this result > sXD2SsGQxI7DDFMwHwONxjGOaoI= > from the data object in the soap envelope? For that you have to study the SOAP / XMLDSIG documentation. > Shouldn't it be the SHA1 digest of the text between > <soapenv:Body Id="MsgBody">... in here ...</soapenv:Body> That seems to be the data you have to digest. But it might be possible you have to normalize it before you can calculate the digest. As I mentioned above: you have to consult the SOAP / XMLDSIG documentation (or somebody who knows how to sign SOAP data...) > Then, is this a SHA1 with RSA digest instead of SHA1. If so, how does > OPENSSL know this if the key is not used on the command line. No. At first it is only SHA1. Only after you have done the RSA signature it is SHA1 with RSA. > Also, Goetz says that one normally digests & signs in one step, but I need > to retrieve the digest as well as the signature value. There are two possibilities: * on the command line call openssl dgst twice: - once to calculate the SHA1 digest - once to calculate the signature. * use the program fragment I posted earlier. (You still have to do the base64 encoding) Doing signing on a pre calculated SHA1 digest is not possible on the command line interface. Bye Goetz -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.2 (GNU/Linux) Comment: Using GnuPG with SUSE - http://enigmail.mozdev.org iD8DBQFF7FeH2iGqZUF3qPYRAnPYAJ4sCu1kq5g54r6WuFsqTLowLusTTACfbhPK 0DKgu9pBxkxlUFWPCNFUwtA= =v1u0 -----END PGP SIGNATURE----- ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
