• Home
• se.idsec.signservice.commons
• signservice-xml-commons
• 2.1.0
• source code
• DefaultXMLMessageSignatureValidator.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

se.idsec.signservice.security.sign.xml.impl.DefaultXMLMessageSignatureValidator Maven / Gradle / Ivy

/*
 * Copyright 2019-2024 IDsec Solutions AB
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
package se.idsec.signservice.security.sign.xml.impl;

import lombok.extern.slf4j.Slf4j;
import org.w3c.dom.Document;
import se.idsec.signservice.security.sign.SignatureValidationResult;
import se.idsec.signservice.security.sign.xml.XMLMessageSignatureValidator;
import se.idsec.signservice.security.sign.xml.XMLSignatureLocation;

import java.security.SignatureException;
import java.security.cert.X509Certificate;
import java.util.List;

/**
 * Implementation of the {@link XMLMessageSignatureValidator} interface.
 *
 * @author Martin Lindström ([email protected])
 * @author Stefan Santesson ([email protected])
 */
@Slf4j
public class DefaultXMLMessageSignatureValidator implements XMLMessageSignatureValidator {

  /**
   * Default constructor.
   */
  public DefaultXMLMessageSignatureValidator() {
  }

  /** {@inheritDoc} */
  @Override
  public void validate(final Document document,
      final List expectedSignerCertificates,
      final XMLSignatureLocation signatureLocation) throws SignatureException {

    final DefaultXMLSignatureValidator validator = new DefaultXMLSignatureValidator(expectedSignerCertificates);
    validator.setXadesProcessing(false);

    final List result = validator.validate(document, signatureLocation);
    if (result.size() > 1) {
      throw new SignatureException("Document contains multiple Signature elements - use XPath expression");
    }
    if (result.getFirst().isSuccess()) {
      log.debug("Signature on XML message successfully validated: {}", result.getFirst());
    }
    else {
      log.info("Signature validation on XML message failed: {}", result.getFirst());
      throw new SignatureException(result.getFirst().getStatusMessage());
    }

  }

}