2 * Copyright 2001-2007 Internet2
4 * Licensed under the Apache License, Version 2.0 (the "License");
5 * you may not use this file except in compliance with the License.
6 * You may obtain a copy of the License at
8 * http://www.apache.org/licenses/LICENSE-2.0
10 * Unless required by applicable law or agreed to in writing, software
11 * distributed under the License is distributed on an "AS IS" BASIS,
12 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
13 * See the License for the specific language governing permissions and
14 * limitations under the License.
18 * SignatureValidator.cpp
20 * Validator for signatures based on an externally-supplied key
24 #include "signature/SignatureValidator.h"
26 #include <xsec/enc/XSECCryptoException.hpp>
27 #include <xsec/framework/XSECException.hpp>
29 using namespace xmlsignature;
30 using namespace xmltooling;
33 void SignatureValidator::validate(const XMLObject* xmlObject) const
35 const Signature* sigObj=dynamic_cast<const Signature*>(xmlObject);
37 throw ValidationException("Validator only applies to Signature objects.");
41 void SignatureValidator::validate(const Signature* sigObj) const
43 DSIGSignature* sig=sigObj->getXMLSignature();
45 throw ValidationException("Signature does not exist yet.");
46 else if (!m_key && !m_credential)
47 throw ValidationException("No Credential or key set on Validator.");
49 XSECCryptoKey* key = m_key ? m_key : (m_credential ? m_credential->getPublicKey() : NULL);
51 throw ValidationException("Credential did not contain a verification key.");
54 sig->setSigningKey(key->clone());
56 throw ValidationException("Digital signature does not validate with the supplied key.");
58 catch(XSECException& e) {
59 auto_ptr_char temp(e.getMsg());
60 throw ValidationException(string("Caught an XMLSecurity exception verifying signature: ") + temp.get());
62 catch(XSECCryptoException& e) {
63 throw ValidationException(string("Caught an XMLSecurity exception verifying signature: ") + e.getMsg());