“id”的情况是:对 XML 文件中的元素进行签名时的属性
在创建对遵循 xml-dsig 标准的数字签名元素的引用时,“id”属性的大小写重要吗?
我见过名为“ID”、“Id”和“id”的属性,并且某些软件包无法为不同的表单找到正确的元素/节点。
另外,遵循各种规范和模式,期望有不同的 id 属性。
当然,该属性必须命名为“id”,但是否指定了大小写或仅提供建议?
Is the case of the "id" attribute important, when creating a reference to an element for digital signing following xml-dsig standard?
I've seen attributes named "ID", "Id" and "id" and some software packages have trouble finding the correct element/node for different forms.
Also following various specs and schemas, there are different id attributes expected.
For sure the attribute must be named "id", but is the case specified or are there only recommendations?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(2)
根本问题有两个方面。首先,如您所知,XML 区分大小写。
其次,XML 不“定义”ID 属性的名称。与 HTML 规定元素可以具有“id”属性不同,XML 本身没有。有
xs:ID类型的概念,但属性的名称(例如,ID、Id、id< /code> 或myIdentifier)默认情况下不提供。参考请参见W3C 应该如何解决识别 ID 语义的问题...?。
因此,一些解析软件假设
id,一些解析软件假设id、ID、Id中的任何一个,有些则不假设。更具体地说,我通常会在 SAML 签名中看到
ID的使用。常用的命令xmlsec1不会标识要使用的名称,因此您必须这样做。例如:告诉 xmlsec1 将
EncryptedKey节点上的命名ID属性(仅)声明为已知的 xs:ID 属性。它似乎是附加的:您可以执行多个操作:将在 EncryptedKey 节点上使用任何一个。
(您可以将
foobar声明为 xs:ID 属性,它会正常工作,因此如果您的源 XML 具有类似以下内容:请使用:
The essential problem is two-fold. First, as you know, XML is case-sensitive.
Second, XML does not "define" the name of an ID attribute. Unlike HTML which says elements may have an 'id' attribute, XML by itself does not. There is the concept of an
xs:IDtype, but the name of the attribute (e.g.,ID,Id,id, ormyIdentifier) is not provided by default.For reference see W3C How should the problem of identifying ID semantics ... be addressed...?.
So, some parsing software assumes
id, some assume any ofid,ID,Id, some assume none.More specifically, I typically see the usage of
IDin SAML signing. The commonly used commandxmlsec1does not identify a name to use, so you have to. For example:tells xmlsec1 to declare the named
IDattribute, onEncryptedKeynodes (only) to be a known xs:ID attribute. It appears to additive: you can do mulitiple:will use any on EncryptedKey nodes.
(You can declare
foobarto be an xs:ID attribute, and it will work just fine, so if your source XML has something like:use:
(注意:您必须知道我不是 xml-dsig 专家,所以我只回答 XML、DTD 和 XML Schema 方面的问题。)
XML 区分大小写,因此大小写为重要且必须与您正在使用的 DTD 或架构中的相同。
当然,如果应用程序在不同的情况下使用不同的模式,就会存在兼容性问题。
我查看了官方 W3C 规范 http://www.w3.org/TR/xmldsig -core/ 以及 Schema 和 DTD 似乎指定了“Id”。这是您使用的规格吗?
另外,如果知道相应的 DTD 类型是“ID”并且有一个名为“id”的 XQuery 函数,这可能会令人困惑。
(Note: You must know that I am not an xml-dsig expert, so I am only answering as far as XML, DTD and XML Schema are concerned.)
XML is case sensitive, so the case is important and must be the same as in the DTD or Schema which you are using.
Of course if applications use different schemas with different cases, there is a compatibility issue.
I looked at the official W3C specification at http://www.w3.org/TR/xmldsig-core/ and the Schema and DTD seem to specify "Id". Is this the specification you are using?
Also, it might be confusing to know that the corresponding DTD type is "ID" and that there is an XQuery function called "id".