[xmlsec] RE: Implementing WS-Security using XMLSec...
Venky Madireddi
venky@arvasoft.com
Wed, 4 Jun 2003 00:53:34 -0700
This is a multi-part message in MIME format.
------=_NextPart_000_0037_01C32A33.BA5076C0
Content-Type: text/plain;
charset="Windows-1252"
Content-Transfer-Encoding: 7bit
I have downloaded xss4j from IBM to get the exc c14n output, I will compare
it with the one from xmlsec. Unfortunately, I don't have any control on what
type of c14n method Websphere uses. The interoperability with Websphere
would be one of our requirements.
Thanks,
-Venky
-----Original Message-----
From: Aleksey Sanin [mailto:aleksey@aleksey.com]
Sent: Wednesday, June 04, 2003 12:10 AM
To: venky@arvasoft.com
Cc: xmlsec@aleksey.com
Subject: Re: [xmlsec] RE: Implementing WS-Security using XMLSec...
Thanks for the reply, I am sorry about not using the mailing list, will
make sure to use it in the future.
It would be great if you also subscribe to the list since you have to be
subscribed
in order to post :)
I don't have a DTD, I am using the xmlAddID function to inform LibXML2
about all the ID's.
Does not matter. xmlAddID() should work too.
Also, I am capturing the response directly from Websphere and storing
it to a file in binary mode.
Since there is no way I could get to the code of Websphere, do you have
any other suggestions on how to solve this issue?
I looked at your files first time with "--print-all" option I told you
about.
xmlsec output seems perfectly valid to me. However, the c14n might
depend on the DTD/schema. If you have any kind of DTD/schema on the
Websphere side then it might screw up the digest. I don't have a WebSphere
to try it out myself so you are on your own here. And you don't need the
code,
you just need a dump of pre-digested data. If there is a exc c14n function
when
you might try to execute it by yourself. Also I would suggest to try c14n
instead of
exc c14n just to see if it will work on not.
Aleksey
------=_NextPart_000_0037_01C32A33.BA5076C0
Content-Type: text/html;
charset="Windows-1252"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3DWindows-1252">
<TITLE></TITLE>
<META content=3D"MSHTML 6.00.2600.0" name=3DGENERATOR></HEAD>
<BODY>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN =
class=3D418184807-04062003>I have=20
downloaded xss4j from IBM to get the exc c14n output, I will compare it =
with the=20
one from xmlsec. Unfortunately, I don't have any control on what type of =
c14n=20
method Websphere uses. The interoperability with Websphere would be one =
of our=20
requirements.</SPAN></FONT></DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D418184807-04062003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D418184807-04062003>Thanks,</SPAN></FONT></DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D418184807-04062003></SPAN></FONT> </DIV>
<DIV><FONT face=3DArial color=3D#0000ff size=3D2><SPAN=20
class=3D418184807-04062003>-Venky</SPAN></FONT></DIV>
<BLOCKQUOTE=20
style=3D"PADDING-LEFT: 5px; MARGIN-LEFT: 5px; BORDER-LEFT: #0000ff 2px =
solid">
<DIV class=3DOutlookMessageHeader dir=3Dltr align=3Dleft><FONT =
face=3DTahoma=20
size=3D2>-----Original Message-----<BR><B>From:</B> Aleksey Sanin=20
[mailto:aleksey@aleksey.com]<BR><B>Sent:</B> Wednesday, June 04, 2003 =
12:10=20
AM<BR><B>To:</B> venky@arvasoft.com<BR><B>Cc:</B>=20
xmlsec@aleksey.com<BR><B>Subject:</B> Re: [xmlsec] RE: Implementing=20
WS-Security using XMLSec...<BR><BR></FONT></DIV><BR>
<BLOCKQUOTE cite=3Dmid002c01c32a5a$c1f41d10$030aa8c0@corp.arvasoft.com =
type=3D"cite">
<DIV><SPAN class=3D653361317-03062003><FONT face=3DArial =
color=3D#0000ff=20
size=3D2>Thanks for the reply, I am s</FONT></SPAN><SPAN=20
class=3D653361317-03062003><FONT face=3DArial color=3D#0000ff =
size=3D2>orry about=20
not using the mailing list, will make sure to use it in the=20
future.</FONT></SPAN></DIV></BLOCKQUOTE>It would be great if you =
also=20
subscribe to the list since you have to be subscribed <BR>in order to =
post=20
:)<BR>
<BLOCKQUOTE cite=3Dmid002c01c32a5a$c1f41d10$030aa8c0@corp.arvasoft.com =
type=3D"cite">
<DIV><SPAN class=3D653361317-03062003></SPAN><SPAN=20
class=3D653361317-03062003><FONT face=3DArial color=3D#0000ff =
size=3D2>I don't have=20
a DTD, I am using the xmlAddID function to inform LibXML2 about all =
the=20
ID's.</FONT></SPAN></DIV>
<DIV><SPAN class=3D653361317-03062003></SPAN></DIV></BLOCKQUOTE>Does =
not matter.=20
xmlAddID() should work too.<BR><BR>
<BLOCKQUOTE cite=3Dmid002c01c32a5a$c1f41d10$030aa8c0@corp.arvasoft.com =
type=3D"cite">
<DIV> <SPAN class=3D653361317-03062003><FONT face=3DArial =
color=3D#0000ff=20
size=3D2>Also, I am capturing the response directly from Websphere =
and storing=20
it to a file in binary mode.</FONT></SPAN></DIV>
<DIV><SPAN class=3D653361317-03062003><FONT face=3DArial =
color=3D#0000ff=20
size=3D2></FONT></SPAN> </DIV>
<DIV><SPAN class=3D653361317-03062003><FONT face=3DArial =
color=3D#0000ff=20
size=3D2>Since there is no way I could get to the code of Websphere, =
do you=20
have any other suggestions on how to solve this =
issue?</FONT></SPAN></DIV>
<DIV><SPAN class=3D653361317-03062003></SPAN><FONT face=3DArial =
color=3D#0000ff=20
size=3D2></FONT><FONT face=3DArial color=3D#0000ff =
size=3D2></FONT><FONT face=3DArial=20
color=3D#0000ff size=3D2></FONT><BR></DIV></BLOCKQUOTE>I looked at =
your files=20
first time with "--print-all" option I told you about.<BR>xmlsec =
output seems=20
perfectly valid to me. However, the c14n might<BR>depend on the =
DTD/schema. If=20
you have any kind of DTD/schema on the<BR>Websphere side then it might =
screw=20
up the digest. I don't have a WebSphere<BR>to try it out myself so you =
are on=20
your own here. And you don't need the code,<BR>you just need a dump of =
pre-digested data. If there is a exc c14n function when<BR>you might =
try to=20
execute it by yourself. Also I would suggest to try c14n instead=20
of<BR> exc c14n just to see if it will work on=20
not.<BR><BR>Aleksey<BR><BR></BLOCKQUOTE></BODY></HTML>
------=_NextPart_000_0037_01C32A33.BA5076C0--