XMLSEC
Section: User Commands ( 1 )
Updated: March 2003
Index Return to Main Contents
NAME
xmlsec - manual page for xmlsec 0.2.0-openssl SYNOPSIS
xmlsec <command> [<options>] [<file>] DESCRIPTION
xmlsec is a command line tool for singining, verifying, encrypting and decrypting XML documents. The allowed <command> values are: - --help
- display this help information and exit
- --help-all
- display help information for all commands/options and exit
- --help-<cmd>
- display help information for command <cmd> and exit
- --version
- print version information and exit
- --keys
- keys XML file manipulation
- --sign
- sign data and output XML document
- --verify
- verify signed document
- --sign-tmpl
- create and sign dynamicaly generated signature template
- --encrypt
- encrypt data and output XML document
- --decrypt
- decrypt data from XML document
OPTIONS
- --ignore-manifests
-
- do not process <dsig:Manifest> elements
- --store-references
-
- store and print the result of <dsig:Reference/> element processing just before calculating digest
- --store-signatures
-
- store and print the result of <dsig:Signature> processing just before calculating signature
- --enabled-reference-uris <list>
-
- comma separated list of of the following values: "empty", "same-doc", "local","remote" to restrict possible URI attribute values for the <dsig:Reference> element
- --binary-data <file>
-
- binary <file> to encrypt
- --xml-data <file>
-
- XML <file> to encrypt
- --enabled-cipher-reference-uris <list>
-
- comma separated list of of the following values: "empty", "same-doc", "local","remote" to restrict possible URI attribute values for the <enc:CipherReference> element
- --session-key <keyKlass>-<keySize>
-
- generate new session <keyKlass> key of <keySize> bits size (for example, "--session des-192" generates a new 192 bits DES key for DES3 encryption)
- --output <filename>
-
- write result document to file <filename>
- --print-debug
-
- print debug information to stdout
- --print-xml-debug
-
- print debug information to stdout in xml format
- --dtd-file <file>
-
- load the specified file as the DTD
- --node-id <id>
-
- set the operation start point to the node with given <id>
- --node-name [<namespace-uri>:]<name>
-
- set the operation start point to the first node with given <name> and <namespace> URI
- --node-xpath <expr>
-
- set the operation start point to the first node selected by the specified XPath expression
- --enabled-key-data <list>
-
- comma separated list of enabled key data (list of registered key data klasses is available with "--list-key-data" command); by default, all registered key data are enabled
- --enabled-retrieval-uris <list>
-
- comma separated list of of the following values: "empty", "same-doc", "local","remote" to restrict possible URI attribute values for the <dsig:RetrievalMethod> element.
- --gen-key[:<name>] <keyKlass>-<keySize>
-
- generate new <keyKlass> key of <keySize> bits size, set the key name to <name> and add the result to keys manager (for example, "--gen:mykey rsa-1024" generates a new 1024 bits RSA key and sets it's name to "mykey")
- --keys-file <file>
-
- load keys from XML file
- --privkey[:<name>] <file>[,<cafile>[,<cafile>[...]]]
-
- load private key from PEM file and certificates that verify this key
- --pubkey[:<name>] <file>
-
- load public key from PEM file
- --aeskey[:<name>] <file>
-
- load AES key from binary file <file>
- --deskey[:<name>] <file>
-
- load DES key from binary file <file>
- --hmackey[:<name>] <file>
-
- load HMAC key from binary file <file>
- --pwd <password>
-
- the password to use for reading keys and certs
- --crypto-config
-
- path to crypto engine configuration
- --repeat <number>
-
- repeat the operation <number> times
- --disable-error-msgs
-
- do not print xmlsec error messages
- --print-crypto-error-msgs
-
- print openssl errors stack at the end
- --help
-
- print help information about the command
AUTHOR
Written by Aleksey Sanin <aleksey@aleksey.com>. REPORTING BUGS
Report bugs to http://www.aleksey.com/xmlsec/bugs.html COPYRIGHT
Copyright © 2002-2003 Aleksey Sanin.
This is free software: see the source for copying information. SEE ALSO
The full documentation for xmlsec is maintained as a Texinfo manual. If the info and xmlsec programs are properly installed at your site, the command - info xmlsec
should give you access to the complete manual.
Index
- NAME
-
- SYNOPSIS
-
- DESCRIPTION
-
- OPTIONS
-
- AUTHOR
-
- REPORTING BUGS
-
- COPYRIGHT
-
- SEE ALSO
-
This document was created by man2html, using the manual pages.
Time: 09:23:06 GMT, March 26, 2003