Return-Path: X-Original-To: apmail-santuario-dev-archive@www.apache.org Delivered-To: apmail-santuario-dev-archive@www.apache.org Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by minotaur.apache.org (Postfix) with SMTP id 68307940F for ; Tue, 20 Dec 2011 15:13:08 +0000 (UTC) Received: (qmail 44980 invoked by uid 500); 20 Dec 2011 15:13:08 -0000 Delivered-To: apmail-santuario-dev-archive@santuario.apache.org Received: (qmail 44957 invoked by uid 500); 20 Dec 2011 15:13:08 -0000 Mailing-List: contact dev-help@santuario.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: dev@santuario.apache.org Delivered-To: mailing list dev@santuario.apache.org Received: (qmail 44950 invoked by uid 99); 20 Dec 2011 15:13:08 -0000 Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 20 Dec 2011 15:13:08 +0000 X-ASF-Spam-Status: No, hits=-0.0 required=5.0 tests=SPF_PASS X-Spam-Check-By: apache.org Received-SPF: pass (nike.apache.org: domain of cantor.2@osu.edu designates 128.146.216.225 as permitted sender) Received: from [128.146.216.225] (HELO defang22.it.ohio-state.edu) (128.146.216.225) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 20 Dec 2011 15:12:58 +0000 Received: from CIO-KRC-HT01.osuad.osu.edu (cio-krc-ht01.osuad.osu.edu [164.107.81.37]) by defang22.it.ohio-state.edu (8.13.1/8.13.1) with ESMTP id pBKFCT03016297 for ; Tue, 20 Dec 2011 10:12:36 -0500 Received: from CIO-KRC-D1MBX01.osuad.osu.edu ([fe80::450b:35e6:80f4:f3e0]) by CIO-KRC-HT01.osuad.osu.edu ([fe80::6d8f:7dea:5691:1620%12]) with mapi id 14.01.0355.002; Tue, 20 Dec 2011 10:12:21 -0500 From: "Cantor, Scott" To: "dev@santuario.apache.org" Subject: Re: XML Security Java 1.5.0-RC1 available Thread-Topic: XML Security Java 1.5.0-RC1 available Thread-Index: AQHMu+X2yY67d2R0DUSf55zQUIhbf5Xjr52AgAAfdQCAAQi0gIAAA/AA Date: Tue, 20 Dec 2011 15:12:20 +0000 Message-ID: In-Reply-To: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [164.107.160.193] Content-Type: text/plain; charset="us-ascii" Content-ID: <0A35C4BD8D54DA49A4D83FF67D97B992@exchange.osu.edu> Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-Spam-Score: 0.00 () [Tag at 4.50] SPF(pass,0) X-CanIt-Geo: ip=164.107.81.37; country=US; region=OH; city=Columbus; postalcode=43201; latitude=39.9930; longitude=-82.9985; metrocode=535; areacode=614; http://maps.google.com/maps?q=39.9930,-82.9985&z=6 X-CanItPRO-Stream: outbound X-Scanned-By: CanIt (www . roaringpenguin . com) on 128.146.216.225 X-Virus-Checked: Checked by ClamAV on apache.org On 12/20/11 4:58 AM, "Colm O hEigeartaigh" wrote: > >It is up to the application calling the signature verification code to >ensure that ID's are unique. This isn't Santuario's fault, but it's the parser's job if it supports either schema validation OR DOM 3 (the latter being the problem). Not enforcing uniqueness on setIdAttribute is either a bug or just blatantly silly, depending on how strictly one wants to read the spec. -- Scott