SAP ABAP Data Element SEC_XML_DSIG_TRANSFORM (Transformations of XML Signature)
Hierarchy
☛
SAP_BASIS (Software Component) SAP Basis Component
⤷
BC-SEC (Application Component) Security
⤷
SXML_SEC (Package) Security Tools for Streamed XML Reader / Writer
SAP_BASIS (Software Component) SAP Basis Component⤷
BC-SEC (Application Component) Security⤷
SXML_SEC (Package) Security Tools for Streamed XML Reader / Writer
Basic Data
| Data Element | SEC_XML_DSIG_TRANSFORM |
| Short Description | Transformations of XML Signature |
Data Type
| Category of Dictionary Type | D | Domain |
| Type of Object Referenced | No Information | |
| Domain / Name of Reference Type | SEC_XML_DSIG_TRANSFORM | |
| Data Type | CHAR | Character String |
| Length | 3 | |
| Decimal Places | 0 | |
| Output Length | 3 | |
| Value Table |
Further Characteristics
| Search Help: Name | ||
| Search Help: Parameters | ||
| Parameter ID | ||
| Default Component name | ||
| Change document | ||
| No Input History | ||
| Basic direction is set to LTR | ||
| No BIDI Filtering |
Field Label
| Length | Field Label | |
| Short | 10 | DSig Trans |
| Medium | 20 | XML Transformation |
| Long | 25 | XML Transformation |
| Heading | 20 | XML Transformation |
Documentation
Definition
The standard defines 4 different transformations:
- Base64: The signed data is stored in encoding BASE64. The signature operations have to decode the data before processing.
- Enveloped Signature Transformation: The signature is within the signed data, which means signature type enveloped. The transformation defines, that the <Signature> node has to be removed from the signature calculation itself.
- XPath: The XPath standard defines rules to specify elements in a XML document. See http://www.w3.org/TR/xpath/
- XSLT: The XSLT transformation is an optional standard and is not implemented in the SAP API, because of its security risk. The standard offers the possibility to execute own, or arbitrary commands in XML processing, which is a security whole.
Use
Set the transformation type in class CL_SEC_SXML_DSIGNATURE. The default is enveloped. Each transformation has its own URI.
Dependencies
The setting depends on the attributes signature type. The setting is defined in the <Reference> node as child of the signature node.
Example
- Base64: http://www.w3.org/2000/09/xmldsig#base64 (required)
- Enveloped: http://www.w3.org/2000/09/xmldsig#enveloped-signature (required)
- XPath Filtering: http://www.w3.org/TR/1999/REC-xpath-19991116 (recommended)
- XSLT: http://www.w3.org/TR/1999/REC-xslt-19991116 (optional)
History
| Last changed by/on | SAP | 20110908 |
| SAP Release Created in | 720 |
