我正在尝试验证包含XSLT转换的XML文件的数字签名。但是,当我验证此消息时,我收到以下错误:
javax.xml.crypto.MarshalException: java.security.InvalidAlgorithmParameterException: XSLT Transform do 不支持指定的参数元素:XSL:转换
该文件的签名包含如下所示的转换:
<xsl:transform xmlns:xsl="http://www.w3.org/1999/XSL/Transform"
version="1.0">
<xsl:output encoding="UTF-8" indent="no" method="xml"
omit-xml-declaration="yes" standalone="yes" version="1.0" />
<xsl:template match="@*|*">
<xsl:copy>
<xsl:apply-templates select="@*|*" />
<xsl:apply-templates select="text()" />
</xsl:copy>
</xsl:template>
<xsl:template match="text()">
<xsl:choose>
<xsl:when test="../@codering = 'base64'">
<xsl:value-of select="translate(normalize-space(.), ' ', '')" />
</xsl:when>
<xsl:otherwise>
<xsl:value-of select="normalize-space(.)" />
</xsl:otherwise>
</xsl:choose>
</xsl:template>
</xsl:transform>
用于验证 xml 文件的代码如下所示:
DocumentBuilderFactory documentBuilderFactory = documentBuilderFactory.newInstance();
documentBuilderFactory.setNamespaceAware(true);
Document xmlDocument = documentBuilderFactory.newDocumentBuilder().parse(new ByteArrayInputStream(document.getBytes()));
NodeList nodeList = xmlDocument.getElementsByTagNameNS(XMLSignature.XMLNS, "Signature");
DOMValidateContext domValidateContext = new DOMValidateContext(new RsaSha256KeySelector(), nodeList.item(0));
XMLSignatureFactory xmlSignatureFactory = XMLSignatureFactory.getInstance("DOM");
XMLSignature signature = xmlSignatureFactory.unmarshalXMLSignature(domValidateContext);
signatureIsValid = signature.validate(domValidateContext);
有人知道我在这里做错了什么吗?
谢谢
找到自己解决问题的方法。显然java XSLT transform只支持xsl:stylesheet,而不支持xsl:transform。Althou W3C XSLT 规范将其定义为同义词。