XMLSecurityDSig::insertSignature PHP Method

XMLSecurityDSig Class Documentation Usage Examples Of XMLSecurityDSig::insertSignature Exibir arquivo Open project: onelogin/php-saml

insertSignature() public method

The signature element will be appended to the element, unless $beforeNode is specified. If $beforeNode is specified, the signature element will be inserted as the last element before $beforeNode.
public insertSignature ( $node, $beforeNode = null ) : DOMNode
$node The node the signature element should be inserted into.
$beforeNode The node the signature element should be located before.
return DOMNode The signature element node 
    public function insertSignature($node, $beforeNode = null)
    {
        $document = $node->ownerDocument;
        $signatureElement = $document->importNode($this->sigNode, true);
        if ($beforeNode == null) {
            return $node->insertBefore($signatureElement);
        } else {
            return $node->insertBefore($signatureElement, $beforeNode);
        }
    }

Usage Example

Exemplo n.º 1
0
 /**
  * Adds signature key and senders certificate to an element (Message or Assertion).
  *
  * @param string|DomDocument $xml  The element we should sign
  * @param string             $key  The private key
  * @param string             $cert The public
  */
 public static function addSign($xml, $key, $cert)
 {
     if ($xml instanceof DOMDocument) {
         $dom = $xml;
     } else {
         $dom = new DOMDocument();
         $dom = self::loadXML($dom, $xml);
         if (!$dom) {
             throw new Exception('Error parsing xml string');
         }
     }
     /* Load the private key. */
     $objKey = new XMLSecurityKey(XMLSecurityKey::RSA_SHA1, array('type' => 'private'));
     $objKey->loadKey($key, false);
     /* Get the EntityDescriptor node we should sign. */
     $rootNode = $dom->firstChild;
     /* Sign the metadata with our private key. */
     $objXMLSecDSig = new XMLSecurityDSig();
     $objXMLSecDSig->setCanonicalMethod(XMLSecurityDSig::EXC_C14N);
     $objXMLSecDSig->addReferenceList(array($rootNode), XMLSecurityDSig::SHA1, array('http://www.w3.org/2000/09/xmldsig#enveloped-signature', XMLSecurityDSig::EXC_C14N), array('id_name' => 'ID'));
     $objXMLSecDSig->sign($objKey);
     /* Add the certificate to the signature. */
     $objXMLSecDSig->add509Cert($cert, true);
     $insertBefore = $rootNode->firstChild;
     $messageTypes = array('samlp:AuthnRequest', 'samlp:Response', 'samlp:LogoutRequest', 'samlp:LogoutResponse');
     if (in_array($rootNode->tagName, $messageTypes)) {
         $issuerNodes = self::query($dom, '/' . $rootNode->tagName . '/saml:Issuer');
         if ($issuerNodes->length == 1) {
             $insertBefore = $issuerNodes->item(0)->nextSibling;
         }
     }
     /* Add the signature. */
     $objXMLSecDSig->insertSignature($rootNode, $insertBefore);
     /* Return the DOM tree as a string. */
     $signedxml = $dom->saveXML();
     return $signedxml;
 }
All Usage Examples Of XMLSecurityDSig::insertSignature
XMLSecurityDSig
__construct
add509Cert
addObject
addRefInternal
addReference
addReferenceList
appendCert
appendKey
appendSignature
appendToKeyInfo
auxKeyInfo
calculateDigest
canonicalizeData
canonicalizeSignedInfo
createNewSignNode
generateGUID
get509XCert
getRefIDs
getRefNodeID
getValidatedNodes
getXPathObj
insertSignature
locateKey
locateSignature
processRefNode
processTransforms
resetXPathObj
setCanonicalMethod
sign
signData
staticAdd509Cert
staticGet509XCerts
validateDigest
validateReference
verify