Sample code for 30+ languages & platforms
Visual FoxPro

Alliance Access LAU Sign Message (XML Signature using HMAC-SHA-256)

See more XML Digital Signatures Examples

Demonstrates how to sign XML according to the requirements for Alliance Access LAU (Local Authentication) using HMAC-SHA-256.

Chilkat Visual FoxPro Downloads

Visual FoxPro
LOCAL lnSuccess
LOCAL loXmlToSign
LOCAL loGen
LOCAL loSbXml

lnSuccess = 0

* This example requires the Chilkat API to have been previously unlocked.
* See Global Unlock Sample for sample code.

* We begin with this message:

* <?xml version="1.0" encoding="utf-8"?>
* <Saa:DataPDU xmlns:Saa="urn:swift:saa:xsd:saa.2.0" xmlns:Sw="urn:swift:snl:ns.Sw"
*   xmlns:SwGbl="urn:swift:snl:ns.SwGbl" xmlns:SwInt="urn:swift:snl:ns:SwInt" xmlns:SwSec="url:swift:snl:ns.SwSec">
*     <Saa:Revision>2.0.7</Saa:Revision>
*     <Saa:Header>
*         <Saa:Message>
* 			<test>blah blah</test>
*         </Saa:Message>
*     </Saa:Header>
*     <Saa:Body>...</Saa:Body>
*     <Saa:LAU>
*     </Saa:LAU>
* </Saa:DataPDU>

* And we want so sign to create this as the result:
* The signed XML we'll create will not be indented and pretty-printed like this.
* Instead, we'll use the "CompactSignedXml" behavior to produce compact single-line XML.

* <?xml version="1.0" encoding="utf-8"?>
* <Saa:DataPDU xmlns:Saa="urn:swift:saa:xsd:saa.2.0" xmlns:Sw="urn:swift:snl:ns.Sw"
*   xmlns:SwGbl="urn:swift:snl:ns.SwGbl" xmlns:SwInt="urn:swift:snl:ns:SwInt" xmlns:SwSec="url:swift:snl:ns.SwSec">
*     <Saa:Revision>2.0.7</Saa:Revision>
*     <Saa:Header>
*         <Saa:Message>
* 			<test>blah blah</test>
*         </Saa:Message>
*     </Saa:Header>
*     <Saa:Body>...</Saa:Body>
*     <Saa:LAU>
*         <ds:Signature xmlns:ds="http://www.w3.org/2000/09/xmldsig#">
*             <ds:SignedInfo>
*                 <ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
*                 <ds:SignatureMethod Algorithm="http://www.w3.org/2001/04/xmldsig-more#hmac-sha256"/>
*                 <ds:Reference URI="">
*                     <ds:Transforms>
*                         <ds:Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
*                         <ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
*                     </ds:Transforms>
*                     <ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
*                     <ds:DigestValue>Y7oScHnYOUQvni/TSzZbDec+HR+mWIFH149GXpwj1Ws=</ds:DigestValue>
*                 </ds:Reference>
*             </ds:SignedInfo>
*             <ds:SignatureValue>6ynF/FcwbPsHrtlj3h2agJigdnvpbO6hOzKSRGzqkw0=</ds:SignatureValue>
*         </ds:Signature>
*     </Saa:LAU>
* </Saa:DataPDU>

lnSuccess = 1

* Create the XML to be signed...

* (The XML does not need to be created this way.  It can be loaded from a file or a string.)
* Also, use this online tool to generate code from sample XML: 
* Generate Code to Create XML

loXmlToSign = CreateObject('Chilkat.Xml')
loXmlToSign.Tag = "Saa:DataPDU"
loXmlToSign.AddAttribute("xmlns:Saa","urn:swift:saa:xsd:saa.2.0")
loXmlToSign.AddAttribute("xmlns:Sw","urn:swift:snl:ns.Sw")
loXmlToSign.AddAttribute("xmlns:SwGbl","urn:swift:snl:ns.SwGbl")
loXmlToSign.AddAttribute("xmlns:SwInt","urn:swift:snl:ns:SwInt")
loXmlToSign.AddAttribute("xmlns:SwSec","url:swift:snl:ns.SwSec")
loXmlToSign.UpdateChildContent("Saa:Revision","2.0.7")
loXmlToSign.UpdateChildContent("Saa:Header|Saa:Message|test","blah blah")
loXmlToSign.UpdateChildContent("Saa:Body","...")
loXmlToSign.UpdateChildContent("Saa:LAU","")

loGen = CreateObject('Chilkat.XmlDSigGen')

loGen.SigLocation = "Saa:DataPDU|Saa:LAU"
loGen.SigLocationMod = 0
loGen.SigNamespacePrefix = "ds"
loGen.SigNamespaceUri = "http://www.w3.org/2000/09/xmldsig#"
loGen.SignedInfoCanonAlg = "EXCL_C14N"
loGen.SignedInfoDigestMethod = "sha256"

* You may alternatively choose "IndentedSignature" instead of "CompactSignedXml"
loGen.Behaviors = "CompactSignedXml"

loGen.AddSameDocRef("","sha256","EXCL_C14N","","")

* Specify the HMAC key.
* For example, if the HMAC key is to be the us-ascii bytes of the string "secret",
* the HMAC key can be set in any of the following ways (and also more ways not shown here..)
loGen.SetHmacKey("secret","ascii")
* or
loGen.SetHmacKey("c2VjcmV0","base64")
* or
loGen.SetHmacKey("736563726574","hex")

* Sign the XML..
loSbXml = CreateObject('Chilkat.StringBuilder')
loXmlToSign.GetXmlSb(loSbXml)
lnSuccess = loGen.CreateXmlDSigSb(loSbXml)
IF (lnSuccess <> 1) THEN
    ? loGen.LastErrorText
    RELEASE loXmlToSign
    RELEASE loGen
    RELEASE loSbXml
    CANCEL
ENDIF

* Save the signed XML to a file.
lnSuccess = loSbXml.WriteFile("qa_output/signedXml.xml","utf-8",0)

* Show the signed XML.
? loSbXml.GetAsString()

RELEASE loXmlToSign
RELEASE loGen
RELEASE loSbXml