I've split out the XMLSig stuff from NeuDist and released it as a seperate package: NeuDist XMLSig 0.6.
This makes a lot more sense, because other people might need an XMLSig implementation for Dom4J and several people might be interested in contributing to this exact package.
The package is very simple and includes support for RSA keys, embedded signatures and has a very simple SOAP implementation built in as well.
The following is a tiny usage example:
KeyPair kp = ..... // Get RSA Key Pair
Element someElement = ..... // Get Dom4j Element somehow
XMLSecTools.signElement("uri:helloworld",someElement,kp);if (XMLSecTools.verifySignature(someElement,kp.getPublicKey())) // Do something
The biggest TODO is to verify it against common test suites for the Canonicalization standard and the XMLSignature standard.
After that we need support for DSA keys (Easy) and transforms (On the way). I'm a big believer that X509 certificates are the devil's making, so I wont be supporting them my self, but if someone wants to thats no problem for me.
Another thing, if there is interest from the Dom4J guys, I'd be happy to clean up the code a bit more and donate it to them.
This entry was posted in the following Categories: Neubia
Excellent stuff! By all means lets include it in the dom4j distribution if you like. Or by all means keep it as a seperate module if you prefer.
Posted by: James Strachan on January 21, 2003 09:35 AMGreat James,
I think I'll get it a little bit cleaner and then give it to you guys.
-P