diff options
Diffstat (limited to 'spss.server/src/at/gv/egovernment/moa/spss/server/invoke/XMLSignatureVerificationInvoker.java')
-rw-r--r-- | spss.server/src/at/gv/egovernment/moa/spss/server/invoke/XMLSignatureVerificationInvoker.java | 12 |
1 files changed, 7 insertions, 5 deletions
diff --git a/spss.server/src/at/gv/egovernment/moa/spss/server/invoke/XMLSignatureVerificationInvoker.java b/spss.server/src/at/gv/egovernment/moa/spss/server/invoke/XMLSignatureVerificationInvoker.java index 185a8c511..e192b66a2 100644 --- a/spss.server/src/at/gv/egovernment/moa/spss/server/invoke/XMLSignatureVerificationInvoker.java +++ b/spss.server/src/at/gv/egovernment/moa/spss/server/invoke/XMLSignatureVerificationInvoker.java @@ -152,7 +152,7 @@ public class XMLSignatureVerificationInvoker { supplements); xmlSignature = buildXMLSignature(signatureEnvironment, request); - // build the list of DataObjects + // build the list of DataObjects dataObjectList = buildDataObjectList(supplements); // build profile @@ -301,8 +301,8 @@ public class XMLSignatureVerificationInvoker { ConfigurationProvider config = context.getConfiguration(); List supplementProfiles = request.getSupplementProfiles(); - List supplements = new ArrayList(); if (supplementProfiles != null) { + List supplements = new ArrayList(); List mappedProfiles = ProfileMapper.mapSupplementProfiles(supplementProfiles, config); Iterator iter; @@ -312,9 +312,11 @@ public class XMLSignatureVerificationInvoker { (SupplementProfileExplicit) iter.next(); supplements.add(profile.getSupplementProfile()); } + + return supplements; } - return supplements; + return null; } /** @@ -351,7 +353,7 @@ public class XMLSignatureVerificationInvoker { // validate that each ReferenceData object contains transforms specified // in the corresponding SignatureManifestCheckParams/ReferenceInfo - if (profile.checkSecurityLayerManifest()) { + if (request.getSignatureManifestCheckParams() != null) { List refInfos = request.getSignatureManifestCheckParams().getReferenceInfos(); List refDatas = filterReferenceInfos(result.getReferenceDataList()); @@ -401,7 +403,7 @@ public class XMLSignatureVerificationInvoker { // validate the hashes contained in all the ReferenceInfo objects of the // security layer manifest - if (profile.checkSecurityLayerManifest() + if (request.getSignatureManifestCheckParams() != null && result.containsSecurityLayerManifest()) { Map hashValues = buildTransformParameterHashValues(request); Set transformParameterURIs = |