subject:"\[xmlsec\] Including the X509 \?"

[xmlsec] Including the X509 ?

2003-07-04 Thread Edward Shallow

Hi Aleksey,

Firstly, I love your library, marvelous achievement.

Now, I'd like to get the sign to include my signing certificate in signed
documents.
If I manually insert them in the template file, and do a command line like
this: 

xmlsec sign --privkey-pem:EdShallow EdShallow.pem --trusted-der cacert.der
--output edsigned1.xml --pwd 123456 templateX509.xml

... And including the KeyInfo in the template as such ...

KeyInfo
KeyNameYourName/KeyName
  X509Data
X509Certificate
MII ...

... Everything works great !!!


However, what to I put in the xmlsec command line and in the template file
to get xmlsec to automatically include the X509Certificate in the resultant
signed document ?

Or should I be using sign-tmpl ?

Thanks,
Ed 


___
xmlsec mailing list
[EMAIL PROTECTED]
http://www.aleksey.com/mailman/listinfo/xmlsec

Re: [xmlsec] Including the X509 ?

2003-07-04 Thread Aleksey Sanin

It's simple :) :
   1) put X509Data/ in the KeyInfo/ to specify you desire to write 
X509 cert
   in the output
   2) Associate the certificate(s) with the key:
   man xmlsec1
   
  --privkey[:name] file[,cafile[,cafile[...]]]

 load private key from PEM file and certificates that 
verify this
 key
   

You might want to look at the tests in the xmlsec test suite. Just 
serach for x509 in
tests/testDSig.sh script.

Aleksey

___
xmlsec mailing list
[EMAIL PROTECTED]
http://www.aleksey.com/mailman/listinfo/xmlsec

[xmlsec] Including the X509 ?

Re: [xmlsec] Including the X509 ?

2 matches

Site Navigation

Mail list logo

Footer information