void
XMLSecurityTest::testSign() {
xbemsg::header_t hdr("tests.xbe.foo.bar", "tests.xbe.foo.bar");
xbemsg::body_t body;
body.any().push_back(body.dom_document().createElementNS(xml::string("http://www.xenbee.net/schema/2008/02/pingpong").c_str(),
xml::string("Ping").c_str()));
xbemsg::message_t msg(hdr,body);
// serialize to DOMDocument
xml_schema::dom::auto_ptr< ::xercesc::DOMDocument > doc =
xbemsg::message(msg, XbeLibUtils::namespace_infomap());
::xercesc::DOMElement *rootElem = doc->getDocumentElement();
XSECProvider prov;
DSIGSignature *sig;
xercesc::DOMElement *sigNode;
sig = prov.newSignature();
sig->setDSIGNSPrefix(xml::string("dsig").c_str());
// sig->setECNSPrefix( NULL );
// sig->setXPFNSPrefix(NULL);
// sig->setPrettyPrint(false);
// Use it to create a blank signature DOM structure from the doc
sigNode = sig->createBlankSignature(doc.get(),
CANON_C14NE_NOC,
SIGNATURE_HMAC,
HASH_SHA1);
// Insert the signature element at the right place within the document
// find the header DOM node
DOMNode *hdrNode = rootElem->getFirstChild();
CPPUNIT_ASSERT(hdrNode != 0);
char *tmpNodeName = XMLString::transcode(hdrNode->getLocalName());
std::string nodeName(tmpNodeName);
XMLString::release(&tmpNodeName);
CPPUNIT_ASSERT_EQUAL(nodeName, std::string("header"));
hdrNode->appendChild(sigNode);
doc->normalizeDocument();
// Create an envelope reference for the text to be signed
DSIGReference * ref = sig->createReference(xml::string("").c_str());
ref->appendEnvelopedSignatureTransform();
// Set the HMAC Key to be the string "secret"
OpenSSLCryptoProvider cryptoProvider;
XSECCryptoKeyHMAC *hmacKey = cryptoProvider.keyHMAC();
hmacKey->setKey((unsigned char *) "secret", strlen("secret"));
sig->setSigningKey(hmacKey);
// Add a KeyInfo element
sig->appendKeyName(MAKE_UNICODE_STRING("The secret key is \"secret\""));
// Sign
sig->sign();
xbemsg::message_t signed_msg(*rootElem);
std::ostringstream oss;
xbemsg::message(oss, signed_msg, XbeLibUtils::namespace_infomap());
// write to an xml file
// {
// std::ofstream ofs("sig-test-2.xml");
// ofs << oss.str();
// }
XBE_LOG_DEBUG(oss.str());
// std::string expected_digest("6gEokD/uXFJHZdGdup83UEJAL7U=\n");
// std::string expected_sigval("t9LLbEU8GHtWrrx+qWTWWujTGEY=\n");
// CPPUNIT_ASSERT_EQUAL(expected_digest,
// signed_msg.header().Signature().get().SignedInfo().Reference().begin()->DigestValue().encode());
// CPPUNIT_ASSERT_EQUAL(expected_sigval,
// signed_msg.header().Signature().get().SignatureValue().encode());
}
void
XMLSecurityLibraryTest::testValidateXbeMessage() {
XBE_LOG_DEBUG("**** Test: testValidateXbeMessage ****");
xbemsg::header_t hdr("test.xbe.to", "tests.xbe.from");
xbemsg::body_t body;
body.any().push_back(body.dom_document().createElementNS(xml::string("http://www.xenbee.net/schema/2008/02/xbetest").c_str(),
xml::string("xbetest:Ping").c_str()));
xbemsg::message_t msg(hdr, body);
// create DOMDocument
::xml_schema::dom::auto_ptr< ::xercesc::DOMDocument > doc(xbemsg::message(msg, XbeLibUtils::namespace_infomap(), 0));
// sign the message
XSECProvider prov;
DSIGSignature *sig;
DOMElement *sigNode;
sig = prov.newSignature();
sig->setDSIGNSPrefix(xml::string("dsig").c_str());
// Use it to create a blank signature DOM structure from the doc
sigNode = sig->createBlankSignature(doc.get(),
CANON_C14N_NOC,
SIGNATURE_HMAC,
HASH_SHA1);
// Insert the signature DOM nodes into the doc
doc->getDocumentElement()->appendChild(sigNode);
DSIGReference * ref = sig->createReference(xml::string("").c_str());
ref->appendEnvelopedSignatureTransform();
// Set the HMAC Key to be the string "secret"
XSECCryptoKeyHMAC *hmacKey = XSECPlatformUtils::g_cryptoProvider->keyHMAC();
hmacKey->setKey((unsigned char *) "secret", (unsigned int)strlen("secret"));
sig->setSigningKey(hmacKey);
// Add a KeyInfo element
sig->appendKeyName(xml::string("The secret key is \"secret\"").c_str());
// Sign
XBE_LOG_DEBUG("signing the document");
sig->sign();
std::string filename("resources/signed-xbe-msg.xml");
std::ofstream out(filename.c_str());
XbeLibUtils::serialize(out, *doc);
// load the document from file
XBE_LOG_DEBUG("parsing dumped message: " << filename);
std::ifstream ifs(filename.c_str());
xsd::cxx::xml::dom::auto_ptr<xercesc::DOMDocument> doc2(XbeLibUtils::parse(ifs, "", false));
DSIGSignature *sig2 = prov.newSignatureFromDOM(doc2.get());
XBE_LOG_DEBUG("loading signature");
sig2->load();
XSECCryptoKeyHMAC *hmacKey2 = XSECPlatformUtils::g_cryptoProvider->keyHMAC();
hmacKey2->setKey((unsigned char *) "secret", strlen("secret"));
sig2->setSigningKey(hmacKey2);
XBE_LOG_DEBUG("verifying signature");
bool isValid(sig2->verify());
CPPUNIT_ASSERT(isValid);
XBE_LOG_DEBUG("message is valid");
}
void XMLSecurityLibraryTest::testSignHomePageExample() {
XBE_LOG_DEBUG("running the simple signing example from the xml-security homepage...");
xsd::cxx::xml::dom::auto_ptr<xercesc::DOMDocument> doc(create("company", "", ""));
DOMElement* rootElem = doc->getDocumentElement();
DOMElement* prodElem = doc->createElement(xml::string("product").c_str());
rootElem->appendChild(prodElem);
DOMText* prodDataVal = doc->createTextNode(xml::string("Xerces-C").c_str());
prodElem->appendChild(prodDataVal);
DOMElement* catElem = doc->createElement(xml::string("category").c_str());
rootElem->appendChild(catElem);
catElem->setAttribute(xml::string("idea").c_str(), xml::string("great").c_str());
DOMText* catDataVal = doc->createTextNode(xml::string("XML Parsing Tools").c_str());
catElem->appendChild(catDataVal);
DOMElement* devByElem = doc->createElement(xml::string("developedBy").c_str());
rootElem->appendChild(devByElem);
DOMText* devByDataVal = doc->createTextNode(xml::string("Apache Software Foundation").c_str());
devByElem->appendChild(devByDataVal);
XSECProvider prov;
DSIGSignature *sig;
DOMElement *sigNode;
sig = prov.newSignature();
sig->setDSIGNSPrefix(xml::string("dsig").c_str());
// Use it to create a blank signature DOM structure from the doc
sigNode = sig->createBlankSignature(doc.get(),
CANON_C14N_NOC,
SIGNATURE_HMAC,
HASH_SHA1);
// Insert the signature DOM nodes into the doc
rootElem->appendChild(sigNode);
// Create an envelope reference for the text to be signed
DSIGReference * ref = sig->createReference(xml::string("").c_str());
ref->appendEnvelopedSignatureTransform();
// Set the HMAC Key to be the string "secret"
XSECCryptoKeyHMAC *hmacKey = XSECPlatformUtils::g_cryptoProvider->keyHMAC();
hmacKey->setKey((unsigned char *) "secret", strlen("secret"));
sig->setSigningKey(hmacKey);
// Add a KeyInfo element
sig->appendKeyName(xml::string("The secret key is \"secret\"").c_str());
// Sign
XBE_LOG_DEBUG("signing the document with key \"secret\"");
sig->sign();
{
std::ofstream of("resources/company-example.xml");
XbeLibUtils::serialize(of, *doc);
XBE_LOG_DEBUG("dumped signed document to: " << "resources/company-example.xml");
}
DSIGSignature *sig1 = prov.newSignatureFromDOM(doc.get());
sig1->load();
hmacKey = XSECPlatformUtils::g_cryptoProvider->keyHMAC();
hmacKey->setKey((unsigned char *) "secret", strlen("secret"));
sig1->setSigningKey(hmacKey);
XBE_LOG_DEBUG("verifying the document");
bool isValid(sig1->verify());
char *_errMsgs = XMLString::transcode(sig1->getErrMsgs());
std::string errMsgs(_errMsgs);
XMLString::release(&_errMsgs);
prov.releaseSignature(sig);
prov.releaseSignature(sig1);
// Verify
CPPUNIT_ASSERT_MESSAGE(errMsgs, isValid);
XBE_LOG_DEBUG("document successfully validated!");
}
void
XMLSecurityLibraryTest::testSign() {
XBE_LOG_DEBUG("signing a xbe-message document by hand");
xsd::cxx::xml::dom::auto_ptr<xercesc::DOMDocument> doc(create("message", "http://www.xenbee.net/schema/2008/02/xbe-msg", "xbemsg"));
DOMElement* root = doc->getDocumentElement();
root->setAttributeNS(xml::string("http://www.w3.org/2000/xmlns/").c_str(),
xml::string("xmlns:xbemsg").c_str(),
xml::string("http://www.xenbee.net/schema/2008/02/xbe-msg").c_str());
/* HEADER */
DOMElement* hdrElem = doc->createElementNS(xml::string("http://www.xenbee.net/schema/2008/02/xbe-msg").c_str(),
xml::string("xbemsg:header").c_str());
root->appendChild(hdrElem);
DOMElement* toElem = doc->createElementNS(xml::string("http://www.xenbee.net/schema/2008/02/xbe-msg").c_str(),
xml::string("xbemsg:to").c_str());
hdrElem->appendChild(toElem);
DOMText* toTxt = doc->createTextNode(xml::string("foo.bar").c_str());
toElem->appendChild(toTxt);
DOMElement* fromElem = doc->createElementNS(xml::string("http://www.xenbee.net/schema/2008/02/xbe-msg").c_str(),
xml::string("xbemsg:from").c_str());
hdrElem->appendChild(fromElem);
DOMText* fromTxt = doc->createTextNode(xml::string("foo.bar").c_str());
fromElem->appendChild(fromTxt);
/* BODY */
DOMElement* bodyElem = doc->createElementNS(xml::string("http://www.xenbee.net/schema/2008/02/xbe-msg").c_str(),
xml::string("xbemsg:body").c_str());
root->appendChild(bodyElem);
/* some example content */
DOMElement* exampleContentElem = doc->createElementNS(xml::string("http://www.example.com/text").c_str(), xml::string("text").c_str());
exampleContentElem->setAttributeNS(xml::string("http://www.w3.org/2000/xmlns/").c_str(),
xml::string("xmlns").c_str(),
xml::string("http://www.example.com/text").c_str());
bodyElem->appendChild(exampleContentElem);
DOMText* exampleContentTxt = doc->createTextNode(xml::string("Hello World!").c_str());
exampleContentElem->appendChild(exampleContentTxt);
XSECProvider prov;
DSIGSignature *sig;
DOMElement *sigNode;
sig = prov.newSignature();
sig->setDSIGNSPrefix(xml::string("dsig").c_str());
// Use it to create a blank signature DOM structure from the doc
sigNode = sig->createBlankSignature(doc.get(),
CANON_C14N_NOC,
SIGNATURE_HMAC,
HASH_SHA1);
// Insert the signature DOM nodes into the doc
hdrElem->appendChild(sigNode);
// doc->normalizeDocument();
// Create an envelope reference for the text to be signed
DSIGReference * ref = sig->createReference(xml::string("").c_str());
ref->appendEnvelopedSignatureTransform();
// Set the HMAC Key to be the string "secret"
XSECCryptoKeyHMAC *hmacKey = XSECPlatformUtils::g_cryptoProvider->keyHMAC();
hmacKey->setKey((unsigned char *) "secret", (unsigned int)strlen("secret"));
sig->setSigningKey(hmacKey);
// Add a KeyInfo element
sig->appendKeyName(xml::string("The secret key is \"secret\"").c_str());
// Sign
XBE_LOG_DEBUG("signing the document");
sig->sign();
{
std::ofstream of("resources/xbe-message-example.xml");
XbeLibUtils::serialize(of, *doc);
XBE_LOG_DEBUG("dumped signed document to: " << "resources/xbe-message-example.xml");
}
DSIGSignature *sig1 = prov.newSignatureFromDOM(doc.get());
sig1->load();
hmacKey = XSECPlatformUtils::g_cryptoProvider->keyHMAC();
hmacKey->setKey((unsigned char *) "secret", strlen("secret"));
sig1->setSigningKey(hmacKey);
XBE_LOG_DEBUG("validating the document");
bool isValid(sig1->verify());
char *_errMsgs = XMLString::transcode(sig1->getErrMsgs());
std::string errMsgs(_errMsgs);
XMLString::release(&_errMsgs);
prov.releaseSignature(sig);
prov.releaseSignature(sig1);
// Verify
CPPUNIT_ASSERT_MESSAGE(errMsgs, isValid);
XBE_LOG_DEBUG("the message is valid!");
}
