I have the need to provide a link on a secure portion of our company web site that will enable employees to directly and seamlessly link and log-in to a purchased Software as a Service medical services partner. The trading partner uses SAML 2.0 for their implementation of Single Sign-on to their application. The HTML needed to implement this uses a <FORM> statement with the employee unique credentials passed as XML document in a parameter of the <FORM> statement.
I generate the employee specific XML document in RPG, it is translated to ASCII and encoded in BASE64. My problem is with the creation of the data unique XML digital signature. The specifics are documented at www.w3.org/TR/2015/NOTE-xmldsig-core2-20150723/#sec-CoreSyntax in 3.2 XML Signature 2.0 Conformance and 4.1 Signature Generation. A helpful description can also be found in An Introduction to XML Digital Signatures at www.xml.com/pub/a/2001/08/08/xmldsig.html.
I?ve been thinking I can create key and signature using the IBM i 7.1 Cryptographic Services ?Qc3? APIs (such as Qc3EncryptData, Qc3EncryptWithMAC, Qc3GenPKAKeyPair). But I?m not actually sure if this will work.
Is there anyone that has successfully done this from RPG on an IBM i? I?m currently running version 7.1.
Please help if you can.
Thank you.
I generate the employee specific XML document in RPG, it is translated to ASCII and encoded in BASE64. My problem is with the creation of the data unique XML digital signature. The specifics are documented at www.w3.org/TR/2015/NOTE-xmldsig-core2-20150723/#sec-CoreSyntax in 3.2 XML Signature 2.0 Conformance and 4.1 Signature Generation. A helpful description can also be found in An Introduction to XML Digital Signatures at www.xml.com/pub/a/2001/08/08/xmldsig.html.
I?ve been thinking I can create key and signature using the IBM i 7.1 Cryptographic Services ?Qc3? APIs (such as Qc3EncryptData, Qc3EncryptWithMAC, Qc3GenPKAKeyPair). But I?m not actually sure if this will work.
Is there anyone that has successfully done this from RPG on an IBM i? I?m currently running version 7.1.
Please help if you can.
Thank you.
Comment