Credential candidateCredential) throws SecurityException { if (candidateCredential == null || SecurityHelper.extractVerificationKey(candidateCredential) == null) { log.debug("Candidate credential was either not supplied or did not contain verification key"); log.debug("PKIX trust engine requires supplied key, skipping PKIX trust evaluation");
Credential candidateCredential) throws SecurityException { if (candidateCredential == null || SecurityHelper.extractVerificationKey(candidateCredential) == null) { log.debug("Candidate credential was either not supplied or did not contain verification key"); log.debug("PKIX trust engine requires supplied key, skipping PKIX trust evaluation");
/** {@inheritDoc} */ public void validate(Signature signature) throws ValidationException { log.debug("Attempting to validate signature using key from supplied credential"); XMLSignature xmlSig = buildSignature(signature); Key validationKey = SecurityHelper.extractVerificationKey(validationCredential); if (validationKey == null) { log.debug("Supplied credential contained no key suitable for signature validation"); throw new ValidationException("No key available to validate signature"); } log.debug("Validating signature with signature algorithm URI: {}", signature.getSignatureAlgorithm()); log.debug("Validation credential key algorithm '{}', key instance class '{}'", validationKey.getAlgorithm(), validationKey.getClass().getName()); try { if (xmlSig.checkSignatureValue(validationKey)) { log.debug("Signature validated with key from supplied credential"); return; } } catch (XMLSignatureException e) { throw new ValidationException("Unable to evaluate key against signature", e); } log.debug("Signature did not validate against the credential's key"); throw new ValidationException("Signature did not validate against the credential's key"); }
/** {@inheritDoc} */ public void validate(Signature signature) throws ValidationException { log.debug("Attempting to validate signature using key from supplied credential"); XMLSignature xmlSig = buildSignature(signature); Key validationKey = SecurityHelper.extractVerificationKey(validationCredential); if (validationKey == null) { log.debug("Supplied credential contained no key suitable for signature validation"); throw new ValidationException("No key available to validate signature"); } log.debug("Validating signature with signature algorithm URI: {}", signature.getSignatureAlgorithm()); log.debug("Validation credential key algorithm '{}', key instance class '{}'", validationKey.getAlgorithm(), validationKey.getClass().getName()); try { if (xmlSig.checkSignatureValue(validationKey)) { log.debug("Signature validated with key from supplied credential"); return; } } catch (XMLSignatureException e) { throw new ValidationException("Unable to evaluate key against signature", e); } log.debug("Signature did not validate against the credential's key"); throw new ValidationException("Signature did not validate against the credential's key"); }
Logger log = getLogger(); Key verificationKey = SecurityHelper.extractVerificationKey(verificationCredential); if (verificationKey == null) { log.error("No verification key supplied in verification credential for signature verification");
Logger log = getLogger(); Key verificationKey = SecurityHelper.extractVerificationKey(verificationCredential); if (verificationKey == null) { log.error("No verification key supplied in verification credential for signature verification");