Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
Java 1.4.5
-
Security Level: Public (Public issues, viewable by everyone)
-
None
-
JBoss 5.1, 6.0
Description
I'm using org.apache.xml.security.signature.XMLSignature to sign my document. First signature in first EJB module works fine, but second signature generated in second EJB module is invalid/different (using the same code, document, keys, certs etc.). References, certificates and key values in generated signatures are the same, only signature value is different.
The same situation occurs after redeploying application if using only one EJB module.
Classloader issue? I'm not sure if this is Santuario issue, maybe this is JBoss issue. Tested on JBoss 5.1 and 6.0.