rlyders wrote:
Once the element has been encrypted and signed, the result is shown below.
The web service that we are integrating with is not a full fledged SOAP WSDL
web service, but rather it simply uses HTTPS and XML. Our existing XML
document format where the XML Signature is enclosed by t
Hi Brent,
yes, I do in fact have the Signature inside the EncryptedData element as you
suggested. I'll have to check with the web service that I am integrating
with to see if it will support some other grouping of the XML elements.
Currently the web service specification asks for one root element
Brent Putman wrote:
>
>
> I don't see how it could be getting the two KeyInfo's confused. All the
> Apache EncryptedData.getKeyInfo() does is return a data member, it
> doesn't do any searching or resolution.
>
>
>
>
> Sound like you're trying to sign the Encrypte
Hi,
I'm not completely clear on what you're doing, but it sounds like at a
minimum you're perhaps doing something that's not legal. More below.
rlyders wrote:
> Brent,
> Your comments lead me to debug the XMCipher java class to find out that my
> enveloped Signature is confusing the default decry
Brent,
Your comments lead me to debug the XMCipher java class to find out that my
enveloped Signature is confusing the default decryption. My XML Signature
element that is enveloped by the EncryptedData element contains it's own
KeyInfo element that is being found by the call to
"encryptedData.get
Thanks, Brent.
Your response identified the problem. I hadn't added the KeyInfo to each
EncryptedData, but only once. So, as long as there was only one encrypted
element, it worked but threw an exception if there were more. Works like a
charm now.
Thanks again,
Wolfgang
>
> 1) When encrypti
Hi Wolfgang,
Since it's falling into the code branch in decryptToByteArray(Element)
that indicates that you did not specify a data decryption key to
XMLCipher#init(int, Key), then I assume you want to use an EncryptedKey
to carry the carry the data decryption key and that you want the library
to ha
Quoting "Lucas, Mike" <[EMAIL PROTECTED]>:
> Hi Wolfgang,
>
> I'm not sure what's wrong with the sample, but I can tell that I've used
> the APIs to successfully encrypt and decrypt SAML messages with:
> a) the entire element and all sub-elements encrypted
> b) several different elements encrypt
Hi Wolfgang,
I'm not sure what's wrong with the sample, but I can tell that I've used
the APIs to successfully encrypt and decrypt SAML messages with:
a) the entire element and all sub-elements encrypted
b) several different elements encrypted
Michael A. Lucas
-Original Message-
Fro
