NAME
XML::Compile::WSS::Sign::RSA - WSS Signing with RSA
INHERITANCE
XML::Compile::WSS::Sign::RSA
is a XML::Compile::WSS::SignSYNOPSIS
# either
use XML::Compile::WSS::Util qw/DSIG_RSA_SHA1/;
my $sign = XML::Compile::WSS::Sign->new(type => DSIG_RSA_SHA1);
# or
use XML::Compile::WSS::Sign::RSA;
my $token = XML::Compile::WSS::Sign::RSA->new(
hashing => 'SHA1', ...);METHODS
Constructors
- XML::Compile::WSS::Sign::RSA->fromConfig(CONFIG, [PRIVKEY])
- XML::Compile::WSS::Sign::RSA->new(OPTIONS)
-
-Option --Defined in --Default hashing <derived from type> private_key undef public_key <from private key> type XML::Compile::WSS::Sign DSIG_RSA_SHA1- hashing => STRING
-
For instance,
SHA1. - private_key => OBJECT|STRING|FILENAME
-
Required if you want to use this object to sign(). See privateKey()
- public_key => OBJECT|STRING|FILENAME
-
Required if you want to use this object to check(). See publicKey() Usually, you need either the public or the private key, not both. However, when you specify a private key, you can ask for the public key as well: it is included.
- type => TYPE
Attributes
- $obj->hashing()
- $obj->privateKey([KEY, [HASHING]])
-
The private key must be set with new(private_key) or this method before you can sign(). This method will return the text of the key.
an Crypt::OpenSSL::RSA object
PEM formatted key, as accepted by Crypt::OpenSSL::RSA method
new_private_key()a filename which contains such bytes.
- $obj->privateKeyRSA()
-
Returns the private key wrapped in a Crypt::OpenSSL::RSA object.
- $obj->publicKey([KEY])
-
Set the public key. You can pass a KEY, which is one of
an XML::Compile::WSS::SecToken::X509v3 object
an Crypt::OpenSSL::RSA object
an Crypt::OpenSSL::X509 object
- $obj->publicKeyRSA()
-
Returns the Crypt::OpenSSL::RSA-wrapped public key.
- $obj->publicKeyString('PKCS1'|'X509')
- $obj->type()
Handlers
- $obj->check(ref-BYTES, SIGNATURE)
-
Use TOKEN to check whether the BYTES (passed by reference) match the SIGNATURE.
For RSA signing, the token can be
a Crypt::OpenSSL::RSA object
a Crypt::OpenSSL::X509 object
a XML::Compile::WSS::SecToken::X509v3 object
- $obj->sign(ref-BYTES)
DETAILS
Read DETAILS in XML::Compile::WSS::Sign first.
Signing, the generic part
Defend against man-in-the-middle
Signing with RSA
Limitations
The signing algorithm uses Crypt::OpenSSL::RSA. According to its manual-page, the current implementation is limited to
sign_method
DSIG_RSA_SHA1 DSIGM_RSA_MD5 DSIGM_RSA_SHA256 DSIGM_RSA_SHA384 DSIGM_RSA_SHA512It could support some RSA_RIPEMD160, however there is no official constant for that in the standards.
token_type
XTP10_X509 XTP10_X509PKI
SEE ALSO
This module is part of XML-Compile-WSS-Signature distribution version 1.09, built on January 18, 2013. Website: http://perl.overmeer.net/xml-compile/
Other distributions in this suite: XML::Compile, XML::Compile::SOAP, XML::Compile::SOAP12, XML::Compile::SOAP::Daemon, XML::Compile::SOAP::WSA, XML::Compile::C14N, XML::Compile::WSS, XML::Compile::WSS::Signature, XML::Compile::Tester, XML::Compile::Cache, XML::Compile::Dumper, XML::Compile::RPC, XML::Rewrite, XML::eXistDB, and XML::LibXML::Simple.
Please post questions or ideas to the mailinglist at http://lists.scsys.co.uk/cgi-bin/mailman/listinfo/xml-compile
For live contact with other developers, visit the #xml-compile channel on irc.perl.org.
LICENSE
Copyrights 2012-2013 by [Mark Overmeer]. For other contributors see ChangeLog.
This program is free software; you can redistribute it and/or modify it under the same terms as Perl itself. See http://www.perl.com/perl/misc/Artistic.html