Java(TM) Boutique - Tighten Data Security with the Java XML Digital Signature API

Listing 2: EnvelopedDigitalSignature.java

package xmlsignatures;

import javax.xml.crypto.dsig.*;
import javax.xml.crypto.dsig.spec.*;
import java.io.File;
import java.io.FileOutputStream;
import java.io.OutputStream;
import java.security.*;
import javax.xml.crypto.dsig.dom.DOMSignContext;
import javax.xml.parsers.DocumentBuilderFactory;
import javax.xml.transform.*;
import javax.xml.transform.dom.DOMSource;
import javax.xml.transform.stream.StreamResult;
import org.w3c.dom.Document;
import javax.xml.parsers.DocumentBuilder;
import javax.xml.crypto.dsig.keyinfo.*;
import java.util.List;
import java.util.ArrayList;

public class EnvelopedDigitalSignature {

    public static void main(String[] args) throws Exception {
  
        //Create a XMLSigantureFactory object
	XMLSignatureFactory xmlSignatureFactory =
	XMLSignatureFactory.getInstance("DOM");

        //Create the digest method
        DigestMethod digestMethod =
		xmlSignatureFactory.newDigestMethod
		(DigestMethod.SHA1, null);
        
        //Create a Tranform object
        Transform transform = xmlSignatureFactory.newTransform
                      (Transform.ENVELOPED, 
					  (TransformParameterSpec) null);
        List < Transform >  transformList = 
		new ArrayList < Transform >  () ; 
        transformList.add(transform);
        
        //Create the Reference object
        Reference reference = 
		xmlSignatureFactory.newReference("", digestMethod,
                               transformList, null, null);
        List < Reference >  referenceList = 
		new ArrayList < Reference >  () ; 
        referenceList.add(reference);
        
        //Create the canonicalization method
        CanonicalizationMethod canonicalizationMethod =
		xmlSignatureFactory.newCanonicalizationMethod(
                  CanonicalizationMethod.INCLUSIVE,
				   (C14NMethodParameterSpec)null);
        
        //Create the signature method
        SignatureMethod signatureMethod =
		 xmlSignatureFactory.newSignatureMethod(
                     SignatureMethod.RSA_SHA1, null);
        
        //Create the SignedInfo object
        SignedInfo signedInfo = 
		xmlSignatureFactory.newSignedInfo(
                     canonicalizationMethod, 
					 signatureMethod, referenceList, null); 
        
	//Create a KeyPairGenerator with 512 key size
        KeyPairGenerator keyPairGenerator = 
		KeyPairGenerator.getInstance("RSA");
        keyPairGenerator.initialize(512);
        
        //Create a KeyPair, based on the above KeyPairGenerator
        KeyPair keyPair = keyPairGenerator.generateKeyPair();

        //Create a KeyInfoFactory
        KeyInfoFactory keyInfoFactory = 
		xmlSignatureFactory.getKeyInfoFactory();
        
        //Create a KeyValue, based on the above KeyInfoFactory
        KeyValue keyValue = 
		keyInfoFactory.newKeyValue(keyPair.getPublic());
        List < KeyValue >  keyvalueList = 
		new ArrayList < KeyValue >  () ; 
        keyvalueList.add(keyValue);
       
        //Create a KeyInfo, based on the above KeyValue
        KeyInfo keyInfo = keyInfoFactory.newKeyInfo(keyvalueList);
        
        //Create a classic DOM factory instance 
		(DocumentBuilderFactory)
        DocumentBuilderFactory documentBuilderFactory =
		 DocumentBuilderFactory.newInstance();
        
        //Make namespace aware
        documentBuilderFactory.setNamespaceAware(true);
        
        //Create a DocumentBuilder
        DocumentBuilder documentBuilder =
		 documentBuilderFactory.newDocumentBuilder();
        
        //Create a Document
        Document document = 
		documentBuilder.parse(
             new File
("C://JavaApplications//XMLDigitalSiganture
//XMLSignatures//XMLs//in.xml"));
        
        //Create a DOMSignContext
        DOMSignContext domSignContext = 
		new DOMSignContext
                   (keyPair.getPrivate(), 
				   document.getDocumentElement());

        //Finally, create the XMLSignature
        XMLSignature xmlSignature =
		 xmlSignatureFactory.newXMLSignature
		 (signedInfo,keyInfo);
        
        //Sign the document
        xmlSignature.sign(domSignContext);
        
        //Write the resulted document
        OutputStream outputStream = 
		new FileOutputStream  
                ("C://JavaApplications//XMLDigitalSiganture
//XMLSignatures//XMLs//outEnveloped.xml");
        
        //Create a TransformerFactory
        TransformerFactory transformerFactory =
		 TransformerFactory.newInstance();
        
        //Create a Tranformer
        Transformer transformer = 
		transformerFactory.newTransformer();
        
        //Write the result into the out.xml document
        transformer.transform(new DOMSource(document), 
		new StreamResult(outputStream));
    }
}

Applet Index
(sorted alphabetically)
A B C D E F G H I J K
L M N O P Q R S T U
V W X Y Z #s

The Java Source
(applets w/source code)
A B C D E F G H I J K
L M N O P Q R S T U
V W X Y Z

How to Add Java Applets to Your Site

New on the Java Boutique:

New Review:

Time Management Made Easy with the Quartz Enterprise Job Scheduler
Why not just use the Java timer API? This open source scheduling API boasts simplicity, ease-of-integration, a well-rounded feature set, and it's free!

New Applet:

Reverse Complement
Reverse Complement is a simple applet that converts DNA or RNA sequences into three useful formats.