- From: Scott Cantor <cantor.2@osu.edu>
- Date: Fri, 31 Jul 2009 00:08:31 -0400
- To: <edsimon@xmlsec.com>
- Cc: "'XMLSec WG Public List'" <public-xmlsec@w3.org>
Ed Simon wrote on 2009-07-30: > I think we do need to make the subsequent text clearer wrt namespace > handling and maybe provide some more examples. It would also seem to me > that Toolkits should provide a way to make it easy for application > developers to see exactly what octet stream is hashed. That's pretty well known. There might even be a best practice note on it. I recall discussing this somewhere. > Btw, to implementors, does your Tookit provide a way to get the octet stream > that is ultimately hashed? Apache xmlsec-j does, via a debug logging message. The -c version can be tweaked to build in a dumb way to get this, but I have a TODO to make something more usable available. -- Scott
Received on Friday, 31 July 2009 04:09:09 UTC