initial (broken) implementation of xmlenc

2015-10-21 15:07:57 -04:00
parent ec5ce6bec4
commit 83593a6168
5 changed files with 532 additions and 7 deletions
--- a/README.md
+++ b/README.md
@@ -6,6 +6,8 @@

 A (partial) wrapper for [xmlsec](https://www.aleksey.com/xmlsec).

+# Signing (xmldsig)
+
 ## Signing Example

    key, _ := ioutil.ReadFile("saml.key")
@@ -21,3 +23,46 @@ A (partial) wrapper for [xmlsec](https://www.aleksey.com/xmlsec).
    if err == xmldsig.ErrVerificationFailed {
      os.Exit(1)
    }
+
+# Encryption (xmlenc)
+
+## Encryption Example
+
+    ctx := xmlenc.Context{}
+    cert, _ := ioutil.ReadFile("saml.cert.pem")
+    err := ctx.AddCert(cert)
+    tmplDoc := []byte(``<?xml version="1.0" encoding="UTF-8"?>
+    <!--
+    XML Security Library example: Original XML doc file before encryption (encrypt3 example).
+    -->
+    <Envelope xmlns="urn:envelope">
+      <Data>
+        Hello, World!
+      </Data>
+      <xenc:EncryptedData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Type="http://www.w3.org/2001/04/xmlenc#Element">
+          <xenc:EncryptionMethod xmlns:xenc="http://www.w3.org/2001/04/xmlenc#" Algorithm="http://www.w3.org/2001/04/xmlenc#aes128-cbc"/>
+          <ds:KeyInfo xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
+            <!--<ds:KeyName>aes</ds:KeyName>-->
+            <xenc:EncryptedKey Id="aes" xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
+              <xenc:EncryptionMethod xmlns:xenc="http://www.w3.org/2001/04/xmlenc#"
+                Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p">
+                <ds:DigestMethod xmlns:ds="http://www.w3.org/2000/09/xmldsig#" Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+              </xenc:EncryptionMethod>
+              <xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
+                <xenc:CipherValue></xenc:CipherValue>
+              </xenc:CipherData>
+            </xenc:EncryptedKey>
+          </ds:KeyInfo>
+          <xenc:CipherData xmlns:xenc="http://www.w3.org/2001/04/xmlenc#">
+            <xenc:CipherValue></xenc:CipherValue>
+          </xenc:CipherData>
+        </xenc:EncryptedData>
+    </Envelope>`)
+    ciphertext, err := ctx.Encrypt(docStr, []byte("Hello, World!"))
+
+## Decryption Example
+
+    ctx := xmlenc.Context{}
+    key, _ := ioutil.ReadFile("saml.key.pem")
+    err := ctx.AddKey(key)
+    plaintext, err := ctx.Decrypt(ciphertext)