Return-Path: Delivered-To: apmail-xml-security-dev-archive@www.apache.org Received: (qmail 86119 invoked from network); 11 Apr 2005 19:21:55 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur.apache.org with SMTP; 11 Apr 2005 19:21:55 -0000 Received: (qmail 44041 invoked by uid 500); 11 Apr 2005 19:21:51 -0000 Delivered-To: apmail-xml-security-dev-archive@xml.apache.org Received: (qmail 44024 invoked by uid 500); 11 Apr 2005 19:21:51 -0000 Mailing-List: contact security-dev-help@xml.apache.org; run by ezmlm Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: Reply-To: security-dev@xml.apache.org Delivered-To: mailing list security-dev@xml.apache.org Received: (qmail 44010 invoked by uid 99); 11 Apr 2005 19:21:51 -0000 X-ASF-Spam-Status: No, hits=0.5 required=10.0 tests=DNS_FROM_RFC_ABUSE,HTML_40_50,HTML_MESSAGE,RCVD_BY_IP,SPF_HELO_PASS,SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (hermes.apache.org: domain of raul.benito.garcia@gmail.com designates 64.233.170.201 as permitted sender) Received: from rproxy.gmail.com (HELO rproxy.gmail.com) (64.233.170.201) by apache.org (qpsmtpd/0.28) with ESMTP; Mon, 11 Apr 2005 12:21:50 -0700 Received: by rproxy.gmail.com with SMTP id z35so2079729rne for ; Mon, 11 Apr 2005 12:21:48 -0700 (PDT) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:references; b=Otx+1YArMGViXmkVyp8rsFiVvPwwyjQchy0RmHqlJySYFsWVUpgDyEhqc02hknzncI8lfYjI8VItDA4/jo26NI5d7Oa+UXlRtweKXQ4vJzBmG68DvJWNAvHgDyxowL9+COzdZ6uTmJFCsFH0Q7i87lN61qZx4syFWwLzc93VeWc= Received: by 10.38.2.70 with SMTP id 70mr4413103rnb; Mon, 11 Apr 2005 12:21:47 -0700 (PDT) Received: by 10.38.97.34 with HTTP; Mon, 11 Apr 2005 12:21:47 -0700 (PDT) Message-ID: <949ac941050411122128b6e10d@mail.gmail.com> Date: Mon, 11 Apr 2005 21:21:47 +0200 From: Raul Benito Reply-To: raul@apache.org To: security-dev@xml.apache.org Subject: Re: .NET and Apache Java Interoperability In-Reply-To: <425ACC37.2000607@amberpoint.com> Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_1671_7497734.1113247307910" References: <425A41DA.506@amberpoint.com> <949ac941050411023329e57ca0@mail.gmail.com> <425ACC37.2000607@amberpoint.com> X-Virus-Checked: Checked X-Spam-Rating: minotaur.apache.org 1.6.2 0/1000/N ------=_Part_1671_7497734.1113247307910 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Hi Vishal, The digest method look very weird to me: Perhaps it something in my email, but you can take a look there. Regards, On Apr 11, 2005 9:12 PM, Vishal Mahajan wrote: >=20 > I've attached the soap document signed by .NET (interop_dotnet_sig.xml)= =20 > and the certificate (apcert1.cer) to be used for verification. The=20 > reference validation fails for the soap body. Note that the 'ID Type'=20 > attribute used on the soap body is a wsu:Id and hence WssIdResolver=20 > (attached) needs to be registered with the library. >=20 > Vishal >=20 > Raul Benito wrote:=20 >=20 > Hi Vishal, > can you post the document? >=20 > On Apr 11, 2005 11:22 AM, Vishal Mahajan wrote:= =20 > >=20 > > I know this topic has been raised earlier on the list. I would like to > > know if someone has got Apache xml-security-J interoperating with the > > .NET (Microsoft WSE)? I've been trying to debug this for quite some > > while now without much success. The reference validation seems to be > > failing. The strange thing is that the document that .NET signed didn't > > even contain any white-space, even then our library seems to be failing > > in validating the signature, and vice versa. > >=20 > > Vishal > >=20 > > =20 >=20 >=20 > --=20 > http://r-bg.com=20 >=20 >=20 >=20 >=20 --=20 http://r-bg.com ------=_Part_1671_7497734.1113247307910 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable Content-Disposition: inline Hi Vishal,
  The digest method look very weird to me:
<DigestMethod Algorithm=3D"http://ww= w.w3.org/!
 2000/09/xmldsig#sha1" />

Perhaps it something in my email, but you can take a look there.

Regards,


On Apr 11, 2005 9:12 PM, Vishal Mahajan <vmahajan@amberpoint.com> wrote:
=20 I've attached the soap document signed by .NET (interop_dotnet_sig.xml) and the certificate (apcert1.cer) to be used for verification. The reference validation fails for the soap body. Note that the 'ID Type' attribute used on the soap body is a wsu:Id and hence WssIdResolver (attached) needs to be registered with the library.

Vishal


Raul Benito wrote:
Hi Vishal,
can you post the document?

On Apr 11, 2005 11:22 AM, Vishal Mahajan <vmahajan@amberpoint.com> wrote:
I know this topic has been raised earlier on the list. I would like to
know if someone has got Apache xml-security-J interoperating with the
.NET (Microsoft WSE)? I've been trying to debug this for quite some
while now without much success. The reference validation seems to be
failing. The strange thing is that the document that .NET signed didn't
even contain any white-space, even then our library seems to be failing
in validating the signature, and vice versa.

Vishal




--
http://r-bg.com





--
http://r-bg.com ------=_Part_1671_7497734.1113247307910--