Skip to main content

By clicking Submit, you agree to the developerWorks terms of use.

The first time you sign into developerWorks, a profile is created for you. Select information in your profile (name, country/region, and company) is displayed to the public and will accompany any content you post. You may update your IBM account at any time.

All information submitted is secure.

  • Close [x]

The first time you sign in to developerWorks, a profile is created for you, so you need to choose a display name. Your display name accompanies the content you post on developerworks.

Please choose a display name between 3-31 characters. Your display name must be unique in the developerWorks community and should not be your email address for privacy reasons.

By clicking Submit, you agree to the developerWorks terms of use.

All information submitted is secure.

  • Close [x]

Select a language:

  • Close [x]
  • Close [x]

SOAP security extensions: digital signature

SOAP-DSIG and SSL

Return to article


Listing 1: A typical SOAP-DSIG request message


    POST /order HTTP/1.1
    Host: www.onlinetrade.com
    Content-Type: text/xml; charset="UTF-8"
    Content-Length: nnnn
    SOAPAction: "http://www.onlinetrade.com/order#buy"

    <SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/">
				<SOAP-ENV:Header>
					<SOAP-SEC:Signature xmlns:SOAP-SEC="http://schemas.xmlsoap.org/soap/security/2000-12" SOAP-ENV:mustUnderstand="1">
						<ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
							<ds:SignedInfo>
								<ds:CanonicalizationMethod Algorithm="http://www.w3.org/TR/2000/CR-xml-c14n-20001026"/>
								<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#dsa-sha1"/>
								<ds:Reference URI="#Body">
									<ds:Transforms>
										<ds:Transform Algorithm="http://www.w3.org/TR/2000/CR-xml-c14n-20001026"/>
									</ds:Transforms>
									<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
									<ds:DigestValue>j6lwx3rvEPO0vKtMup4NbeVu8nk=</ds:DigestValue>
								</ds:Reference>
							</ds:SignedInfo>
							<ds:SignatureValue>MC0CFFrVLtRlk=...</ds:SignatureValue>
							<ds:KeyInfo>
								<ds:KeyName>Michael</ds:KeyName>
							</ds:KeyInfo>
						</ds:Signature>
					</SOAP-SEC:Signature>
				</SOAP-ENV:Header>
				<SOAP-ENV:Body xmlns:SOAP-SEC="http://schemas.xmlsoap.org/soap/security/2000-12" SOAP-SEC:id="Body">
					<order:buy xmlns:order="http://www.onlinetrade.com/order">
						<order:ticker-symbol>IBM</order:ticker-symbol>
						<order:quantity>100</order:quantity>
						<order:market>New York</order:market>
					</order:buy>
				</SOAP-ENV:Body>
			</SOAP-ENV:Envelope>

Return to article

Share this page:

  • Close [x]

Follow developerWorks:

  • Close [x]