summaryrefslogtreecommitdiff
path: root/xslt/sign-new.xsl
diff options
context:
space:
mode:
authorLeif Johansson <leifj@sunet.se>2016-11-16 10:13:55 +0100
committerLeif Johansson <leifj@sunet.se>2016-11-16 10:13:55 +0100
commit47170551ffe3b1662e39e60199dfd6b0567dc8e3 (patch)
tree042fd100cf793c8bb58476750b57be0a4b9a83fa /xslt/sign-new.xsl
parent504d41eb76856c20834625ed86e081e3eed6a76c (diff)
use a separate sign xslt for the pyXMLSecurity-based stuff
Diffstat (limited to 'xslt/sign-new.xsl')
-rw-r--r--xslt/sign-new.xsl48
1 files changed, 48 insertions, 0 deletions
diff --git a/xslt/sign-new.xsl b/xslt/sign-new.xsl
new file mode 100644
index 00000000..48364512
--- /dev/null
+++ b/xslt/sign-new.xsl
@@ -0,0 +1,48 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<xsl:stylesheet version="1.0"
+ xmlns:md="urn:oasis:names:tc:SAML:2.0:metadata"
+ xmlns:xsl="http://www.w3.org/1999/XSL/Transform"
+ xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+ xmlns:xs="http://www.w3.org/2001/XMLSchema"
+ xmlns:ds="http://www.w3.org/2000/09/xmldsig#"
+ xmlns:exsl="http://exslt.org/common"
+ xmlns:mdrpi="urn:oasis:names:tc:SAML:metadata:rpi"
+ extension-element-prefixes="exsl"
+ xmlns:shibmd="urn:mace:shibboleth:metadata:1.0">
+
+ <xsl:output method="xml" indent="yes" encoding="UTF-8"/>
+
+ <xsl:template match="/md:EntitiesDescriptor">
+ <md:EntitiesDescriptor>
+ <xsl:apply-templates select="@*|text()|comment()"/>
+ <ds:Signature>
+ <ds:SignedInfo>
+ <ds:CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" />
+ <ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" />
+ <ds:Reference>
+ <xsl:attribute name="URI"><xsl:text>#</xsl:text><xsl:value-of select="@ID"/></xsl:attribute>
+ <ds:Transforms>
+ <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+ <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+ </ds:Transforms>
+ <ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" />
+ <ds:DigestValue></ds:DigestValue>
+ </ds:Reference>
+ </ds:SignedInfo>
+ <ds:SignatureValue/>
+ </ds:Signature>
+ <xsl:apply-templates/>
+ </md:EntitiesDescriptor>
+ </xsl:template>
+
+ <xsl:template match="text()|comment()|@*">
+ <xsl:copy/>
+ </xsl:template>
+
+ <xsl:template match="*">
+ <xsl:copy>
+ <xsl:apply-templates select="node()|@*"/>
+ </xsl:copy>
+ </xsl:template>
+
+</xsl:stylesheet>