ESYAE-imza Kütüphaneleri

Bu sayfa salt okunur. Kaynağı görebilirsiniz ama değiştiremezsiniz. Bunun yanlış olduğunu düşünüyorsanız yöneticiye danışın.

<h1>XAdES İmza Yapıları</h1> <div class="level1"> <p> Kodları <code>tr.gov.tubitak.uekae.esya.api.xades.example.structures</code> paketi altında bulabilirsiniz. </p> </div> <h2>Ayrık (Detached) İmza</h2> <div class="level2"> <p> İmzalanan dökümanın imzadan ayrı olduğu imza şeklidir. Örneği <code>Detached</code> sınıfındadır. </p> <p> <em><</em>sxh java> <em> create context with working directory Context context = createContext(); </em> create signature according to context, <em> with default type (XADES_BES) XMLSignature signature = new XMLSignature(context); </em> add document as reference, but do not embed it <em> into the signature (embed=false) signature.addDocument("./sample.txt", "text/plain", false); signature.getSignedInfo().setSignatureMethod(SignatureMethod.RSA_SHA256); </em> false-true gets non-qualified certificates while true-false gets qualified ones X509Certificate cert = JSmartCardManager.getInstance().getSignatureCertificate(true, false); </p> <p> <em> add certificate to show who signed the document signature.addKeyInfo(new ECertificate(cert.getEncoded())); </em> now sign it by using smart card signature.sign(JSmartCardManager.getInstance().getSigner(PIN, cert)); </p> <p> signature.write(new FileOutputStream(BASE_DIR + SIGNATURE_FILENAME)); <em><</em>/sxh> </p> </div> <h2>Zarflayan (Enveloping) İmza</h2> <div class="level2"> <p> İmzalanan dökümanın imzanın içine konduğu imza şeklidir. Örnek kod <code>Enveloping</code> içindedir. </p> <p> <em><</em>sxh java> <em> create context with working directory Context context = createContext(); </em> create signature according to context, <em> with default type (XADES_BES) XMLSignature signature = new XMLSignature(context); </em> add document as reference, and keep BASE64 version of data <em> in an </em><<em>Object tag, in a way that reference points to </em> that <em><</em>Object <em> (embed=true) signature.addDocument("./sample.txt", "text/plain", true); signature.getSignedInfo().setSignatureMethod(SignatureMethod.RSA_SHA256); </em> false-true gets non-qualified certificates while true-false gets qualified ones X509Certificate cert = JSmartCardManager.getInstance().getSignatureCertificate(true, false); </p> <p> <em> add certificate to show who signed the document signature.addKeyInfo(new ECertificate(cert.getEncoded())); </em> now sign it by using smart card signature.sign(JSmartCardManager.getInstance().getSigner(PIN, cert)); </p> <p> signature.write(new FileOutputStream(BASE_DIR + SIGNATURE_FILENAME)); <em><</em>/sxh> </p> </div> <h2>Zarflanmış (Enveloped) İmza</h2> <div class="level2"> <p> İmzanın XML dökümanının içine yerleştirildiği imzadır. Örnek kod <code>Enveloped</code> sınıfındadır. </p> <p> <em><</em>sxh java> <em> here is our custom envelope XML Document envelopeDoc = newEnvelope(); </em> create context with working directory Context context = createContext(); </p> <p> <em> define where signature belongs to context.setDocument(envelopeDoc); </em> create signature according to context, <em> with default type (XADES_BES) XMLSignature signature = new XMLSignature(context, false); </em> attach signature to envelope envelopeDoc.getDocumentElement().appendChild(signature.getElement()); </p> <p> <em> add document as reference, signature.addDocument("#data1", "text/xml", false); signature.getSignedInfo().setSignatureMethod(SignatureMethod.RSA_SHA256); </em> false-true gets non-qualified certificates while true-false gets qualified ones X509Certificate cert = JSmartCardManager.getInstance().getSignatureCertificate(true, false); </p> <p> <em> add certificate to show who signed the document signature.addKeyInfo(new ECertificate(cert.getEncoded())); </em> now sign it by using smart card signature.sign(JSmartCardManager.getInstance().getSigner(PIN, cert)); </p> <p> <em> this time we do not use signature.write because we need to write </em> whole document instead of signature Source source = new DOMSource(envelopeDoc); Transformer transformer = TransformerFactory.newInstance().newTransformer(); </p> <p> <em> write to file transformer.transform(source, new StreamResult(new FileOutputStream(BASE_DIR + SIGNATURE_FILENAME))); </em><<em>/sxh> ===== Dönüşümlü Zarflanmış (Transformed Enveloped) İmza ===== Zarflanmış imzaya transform methodu dahil edilmesi ile oluşur. Örnek kod <code>EnvelopedTransform</code> içindedir. </em><<em>sxh java> Document envelopeDoc = newEnvelope(); Context context = createContext(); context.setDocument(envelopeDoc); XMLSignature signature = new XMLSignature(context, false); </em> attach signature to envelope envelopeDoc.getDocumentElement().appendChild(signature.getElement()); </p> <p> Transforms transforms = new Transforms(context); transforms.addTransform(new Transform(context, TransformType.ENVELOPED.getUrl())); </p> <p> <em> add whole document(=_fckg_QUOT<u>fckg_QUOT_) with envelope transform, with SHA256 <em> and don't include it into signature(false) signature.addDocument("", "text/xml", transforms, DigestMethod.SHA_256, false); signature.getSignedInfo().setSignatureMethod(SignatureMethod.RSA_SHA256); </em> false-true gets non-qualified certificates while true-false gets qualified ones X509Certificate cert = JSmartCardManager.getInstance().getSignatureCertificate(true, false); <em> add certificate to show who signed the document signature.addKeyInfo(new ECertificate(cert.getEncoded())); </em> now sign it by using smart card signature.sign(JSmartCardManager.getInstance().getSigner(PIN, cert)); Source source = new DOMSource(envelopeDoc); Transformer transformer = TransformerFactory.newInstance().newTransformer(); <em> write to file transformer.transform(source, new StreamResult(new FileOutputStream(BASE_DIR + SIGNATURE_FILENAME))); </em><<em>/sxh> </p> </div>