...
Once the certificate file is locally installed, you can use it to verify the signature on the metadata file. For example, you could use the XmlSecTool (or some similar 3rd-party tool) to verify the signature:$
| Code Block | ||||
|---|---|---|---|---|
| ||||
xmlsectool.sh --verifySignature --signatureRequired \ --certificate incommon.pem --inFile InCommon-metadata.xml |
You may also want to schema validate the metadata as well:$
| Code Block | ||||
|---|---|---|---|---|
| ||||
xmlsectool.sh --validateSchema \ --schemaDirectory schema-files --inFile InCommon-metadata.xml |
We For convenience, we provide a set of (modifiededited) schema files that permit offline schema validation.
...