-
Notifications
You must be signed in to change notification settings - Fork 65
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support for Manifest #226
Comments
Hi Bernard, Right, xades4j has no builtin support to add a signed data object that is a I'm afraid there isn't a quick hack. It would probably require adding a new I can have a look at options, but I'm not very convinced that this would be a good addition. |
Hello Luis, First, thank you for your reply. The modifications you suggest were the ones I tried. The code I inserted in
I have no idea if this is a common thing, because I have no experience in signing, if you are interested, here is the policy I'm trying to implement : http://www.banque-france.fr/igc/signature/ps/ps_1_2_250_1_115_200_301_1.pdf § 4.2. Caractéristiques des signatures Also, I don't see the problem about the placing of the manifest, from what I understand, it's the only child of an Object node we add, so we should have full control. Thanks, Bernard. |
Hi Bernard, I'll see if I can find some time during this week to try out your code and other approaches. How are you creating the manifest content, namely the digest calculation? Also, how do the What I meant by the placement of the |
Hi Luis, Again, thank you for taking time to look at this question. I'm able to make my code functional, just by adding some blessing on the Id attribute with
In fact, the policy implies that there is only one reference in the manifest, but it looks exactly as normal Actually, the manifest content is just hard coded, but I should calculate it, I will look at it now. I totally agree that the library shouldn't be closely coupled to particular policies, but of course, if you can provide a clean approach to implement this, I'm interested. Thanks, Bernard. |
Hi Bernard, I've written a PoC for the user case we've been discussing. After a bit more thought, I think having a new The code still has a lot of TODOs but it is functional. The idea is that the manifest is also defined using It's pushed to https://github.com/luisgoncalves/xades4j/tree/iss-256. Can you have a look, namely at the test I added and the resulting signed document? Let me know what you think. |
Hi Bernard I've pushed the final solution for this. Hope you can use it. |
Hello,
I want to create a signature file like this :
With that snipet, I'm able to create something that looks very close :
The result :
My result have two problems :
It looks like there is some manifest support in xades4j, but for verification only.
Is it possible with xades4j to generate the signature in the format I want, (even with a quick dirty hack) ?
Thanks, Bernard.
The text was updated successfully, but these errors were encountered: