Listing 4: DetachedDigitalSignature.java
package xmlsignatures;
import javax.xml.crypto.dsig.*;
import javax.xml.crypto.dsig.spec.*;
import java.io.FileOutputStream;
import java.io.OutputStream;
import java.security.*;
import javax.xml.crypto.dsig.dom.DOMSignContext;
import javax.xml.parsers.DocumentBuilderFactory;
import javax.xml.transform.*;
import javax.xml.transform.dom.DOMSource;
import javax.xml.transform.stream.StreamResult;
import org.w3c.dom.Document;
import javax.xml.parsers.DocumentBuilder;
import javax.xml.crypto.dsig.keyinfo.*;
import java.util.List;
import java.util.ArrayList;
public class DetachedDigitalSignature {
public static void main(String[] args) throws Exception {
//Create a XMLSigantureFactory object
XMLSignatureFactory xmlSignatureFactory =
XMLSignatureFactory.getInstance("DOM");
//Create the digest method
DigestMethod digestMethod =
xmlSignatureFactory.newDigestMethod
(DigestMethod.SHA1, null);
//Create the Reference object
Reference reference =
xmlSignatureFactory.newReference(
"http://www.w3.org/TR/xml-stylesheet",
digestMethod);
List < Reference >
referenceList =
new ArrayList < Reference > () ;
referenceList.add(reference);
//Create the canonicalization method
CanonicalizationMethod canonicalizationMethod =
xmlSignatureFactory.newCanonicalizationMethod(
CanonicalizationMethod.INCLUSIVE,
(C14NMethodParameterSpec)null);
//Create the signature method
SignatureMethod signatureMethod =
xmlSignatureFactory.newSignatureMethod
(SignatureMethod.RSA_SHA1, null);
//Create the SignedInfo object
SignedInfo signedInfo =
xmlSignatureFactory.newSignedInfo
(canonicalizationMethod, signatureMethod,
referenceList, null);
//Create a KeyPairGenerator with 512 key size
KeyPairGenerator keyPairGenerator =
KeyPairGenerator.getInstance("RSA");
keyPairGenerator.initialize(512);
//Create a KeyPair, based on the above KeyPairGenerator
KeyPair keyPair = keyPairGenerator.generateKeyPair();
//Create a KeyInfoFactory
KeyInfoFactory keyInfoFactory =
xmlSignatureFactory.getKeyInfoFactory();
//Create a KeyValue, based on the above KeyInfoFactory
KeyValue keyValue =
keyInfoFactory.newKeyValue(keyPair.getPublic());
List < KeyValue > keyvalueList =
new ArrayList < KeyValue > () ;
keyvalueList.add(keyValue);
//Create a KeyInfo, based on the above KeyValue
KeyInfo keyInfo =
keyInfoFactory.newKeyInfo(keyvalueList);
//Create a classic DOM factory instance
(DocumentBuilderFactory)
DocumentBuilderFactory documentBuilderFactory =
DocumentBuilderFactory.newInstance();
//Make namespace aware
documentBuilderFactory.setNamespaceAware(true);
//Create a DocumentBuilder
DocumentBuilder documentBuilder =
documentBuilderFactory.newDocumentBuilder();
//Create a Document
Document document = documentBuilder.newDocument();
//Create a DOMSignContext
DOMSignContext domSignContext =
new DOMSignContext(keyPair.getPrivate(), document);
//Finally, create the XMLSignature
XMLSignature xmlSignature =
xmlSignatureFactory.newXMLSignature
(signedInfo,keyInfo);
//Sign the document
xmlSignature.sign(domSignContext);
//Write the resulted document
OutputStream outputStream = new FileOutputStream
("C://JavaApplications//XMLDigitalSiganture
//XMLSignatures//XMLs//outDetached.xml");
//Create a TransformerFactory
TransformerFactory transformerFactory =
TransformerFactory.newInstance();
//Create a Tranformer
Transformer transformer =
transformerFactory.newTransformer();
//Write the result into the out.xml document
transformer.transform(new DOMSource(document),
new StreamResult(outputStream));
}
}
New on the Java Boutique:
New Review:
Time Management Made Easy with the Quartz Enterprise Job Scheduler
Why not just use the Java timer API? This open source scheduling
API boasts simplicity, ease-of-integration, a well-rounded feature
set, and it's free!
New Applet:
Reverse Complement
Reverse Complement is a simple applet that converts DNA or RNA
sequences into three useful formats.
Elsewhere on internet.com:
WebDeveloper Java
Lots of Java information on webdeveloper.com
WDVL Java
Thorough Java resource at the Web Developer's Virtual Library.
ScriptSearch Java
Hundreds of free Java code files to download.
jGuru: Your View of the Java Universe
Customizable portal with online training, FAQs, regular news updates, and tutorials.
