The simplest way to achieve this is to check certificate *after* xmlsec verifies signature. You get all the information about the signature including the certificate in the xmlSecDSigCtx.
Aleksey Dmitry Belyavsky wrote:
Greetings! We need to add some extra application-level verification for the cert chain built by xmlsec. Is it possible, for example, to provide a custom verification callback? If not, what should we do to make it possible? Thank you!
_______________________________________________ xmlsec mailing list [email protected] http://www.aleksey.com/mailman/listinfo/xmlsec
