Integration Server 10.3 | Built-In Services Reference Guide | Security Folder | Summary of Elements in this Folder | pub.security.pkcs7:sign
 
pub.security.pkcs7:sign
WmPublic. Deprecated - Replaced by pub.security.keystore.pkcs7:sign.
Creates a PKCS7 SignedData object.
This service enables multiple entities to sign the specified data. Each signerInfo block contained in the resulting signature contains two authenticated attributes: the content type and a timestamp.
Input Parameters
signerInfo
Document List Information about a single signer of the signed data object. Each signerInfo requires either a certificate chain and a private key or a key alias that references them.
Key
Description
certChain
java.security.cert.X509Certificate[ ] or byte[ ][ ] Certificate chain of the signer. The subject that is performing the signature should be the first certificate in this chain, while the root Certifying Authority should be the last. The key provided should correspond to the public key contained in the first certificate of the chain.
key
java.security.PrivateKey or byte[ ] Private key that will be used to digitally sign the data. The private key can be any asymmetric encryption key that is supported by the webMethods Integration Server (for example, DSA or RSA).
keyAlias
String Alias of the certificate chain and private key in the key store. This key is not currently used.
hashAlgorithm
String The algorithm to use when computing the digest of the provided data (SHA-1 or MD5). The default value is MD5.
data
byte[ ] Data to be digitally signed.
detachedSignature
String Flag specifying whether to generate a detached signature. A detached signature does not include the data that was signed. Set to:
*true to generate a detached signature.
*false to generate an implicit signature (one that includes the signed data). This is the default.
Output Parameters
signature
byte[ ] Signature generated from the supplied data. This is a DER-encoded representation of the SignedData object as specified in PKCS#7.
Usage Notes
This service is superseded by pub.security.keystore.pkcs7:sign.