[xmlsec] Re: parsing signature.xml
Aleksey Sanin
aleksey at aleksey.com
Fri Apr 3 10:07:48 PST 2009
Sorry, I am not sure I understand the question about the online
tool. Could you please give more details? E.g. error messages
you see?
Regarding things verified... Yes, xmlsec verifies the signature
according to XMLDsig standard and also performs the certificates
chain verification.
Aleksey
Ashish Agrawal wrote:
>
>
> On Fri, Apr 3, 2009 at 3:48 PM, Ashish Agrawal <meetashish at gmail.com
> <mailto:meetashish at gmail.com>> wrote:
>
> Hi Aleksey,
>
> I ve a doubt on the sample implementation which is present at
> http://www.aleksey.com/xmlsec/api/xmlsec-verify-with-x509.html.
> My understanding is, the xml file is the signature.xml file which
> contains the signatureValue and the x509 certificates,
>
> when it asks for another pem certifaicate does it mean to get the
> root CA certificate which has signed one of the x509 cert present in
> the signature.xml file.
>
> also when we say verification (xmlSecDSigCtxVerify) what all things
> are verified from the signature.xml, does it do
>
> 1. signatureValue verification
> 2. root chain verification ?
> can u let me know is there is nything else that is verified ?
>
> ~Regards,
> Ashish
>
>
More information about the xmlsec
mailing list