sepafm 0.0.2 → 0.1.0

data/test/sepa/banks/danske/danske_generic_soap_builder_test.rb

@@ -0,0 +1,278 @@
+require 'test_helper'
+
+class DanskeGenericSoapBuilderTest < ActiveSupport::TestCase
+
+  def setup
+    keys_path = File.expand_path('../keys', __FILE__)
+
+    private_key_path = "#{keys_path}/signing_private_key.pem"
+    private_key = File.read private_key_path
+
+    signing_cert_path = "#{keys_path}/own_signing_cert.pem"
+    signing_cert = File.read signing_cert_path
+
+    enc_cert_path = "#{keys_path}/own_enc_cert.pem"
+    enc_cert = File.read enc_cert_path
+
+    @nordea_generic_params = {
+      bank: :danske,
+      private_key: OpenSSL::PKey::RSA.new(private_key),
+      command: :upload_file,
+      customer_id: '360817',
+      environment: 'TEST',
+      enc_cert: enc_cert,
+      cert: signing_cert,
+      language: 'EN',
+      status: 'ALL',
+      target_id: 'Danske FI',
+      file_type: 'pain.001.001.02',
+      content: Base64.encode64('kissa'),
+      file_reference: "11111111A12006030329501800000014",
+    }
+
+    @soap_request = Sepa::SoapBuilder.new(@nordea_generic_params)
+
+    @doc = Nokogiri::XML(@soap_request.to_xml)
+
+    # Namespaces
+    @bxd = 'http://model.bxd.fi'
+  end
+
+  def test_should_initialize_request_with_proper_params
+    assert Sepa::SoapBuilder.new(@nordea_generic_params).to_xml
+  end
+
+  def test_should_get_error_if_command_missing
+    @nordea_generic_params.delete(:command)
+
+    assert_raises(ArgumentError) do
+      Sepa::SoapBuilder.new(@nordea_generic_params)
+    end
+  end
+
+  def test_should_load_correct_template_with_download_file_list
+    @nordea_generic_params[:command] = :download_file_list
+    doc = Nokogiri::XML(Sepa::SoapBuilder.new(@nordea_generic_params).to_xml)
+
+    assert doc.at('//cor:downloadFileListin', 'cor' => 'http://bxd.fi/CorporateFileService')
+  end
+
+  def test_should_load_correct_template_with_get_user_info
+    @nordea_generic_params[:command] = :get_user_info
+    doc = Nokogiri::XML(Sepa::SoapBuilder.new(@nordea_generic_params).to_xml)
+
+    assert doc.at('//cor:getUserInfoin', 'cor' => 'http://bxd.fi/CorporateFileService')
+  end
+
+  def test_should_load_correct_template_with_download_file
+    @nordea_generic_params[:command] = :download_file
+    doc = Nokogiri::XML(Sepa::SoapBuilder.new(@nordea_generic_params).to_xml)
+
+    assert doc.at('//cor:downloadFilein', 'cor' => 'http://bxd.fi/CorporateFileService')
+  end
+
+  def test_should_load_correct_template_with_upload_file
+    @nordea_generic_params[:command] = :upload_file
+    doc = Nokogiri::XML(Sepa::SoapBuilder.new(@nordea_generic_params).to_xml)
+
+    assert doc.at('//cor:uploadFilein', 'cor' => 'http://bxd.fi/CorporateFileService')
+  end
+
+  def test_should_raise_error_if_unrecognised_command
+    @nordea_generic_params[:command] = :wrong_command
+
+    assert_raises(ArgumentError) do
+      soap = Sepa::SoapBuilder.new(@nordea_generic_params)
+    end
+  end
+
+  def test_sender_id_is_properly_set
+    assert_equal @nordea_generic_params[:customer_id],
+      @doc.at("//bxd:SenderId", 'bxd' => 'http://model.bxd.fi').content
+  end
+
+  def test_request_id_is_properly_set
+    request_id = @doc.at("RequestId", 'xmlns' => @bxd).content
+
+    assert request_id =~ /^[0-9A-F]+$/i
+    assert_equal request_id.length, 10
+  end
+
+  def test_timestamp_is_set_correctly
+    timestamp_node = @doc.at("//bxd:Timestamp", 'bxd' => 'http://model.bxd.fi')
+    timestamp = Time.strptime(timestamp_node.content, '%Y-%m-%dT%H:%M:%S%z')
+
+    assert timestamp <= Time.now && timestamp > (Time.now - 60)
+  end
+
+  def test_language_is_set_correctly
+    language_node = @doc.at("//bxd:Language", 'bxd' => 'http://model.bxd.fi')
+
+    assert_equal language_node.content, @nordea_generic_params[:language]
+  end
+
+  def test_user_agent_is_set_correctly
+    user_agent_node = @doc.at("//bxd:UserAgent", 'bxd' => 'http://model.bxd.fi')
+
+    assert_equal user_agent_node.content, "Sepa Transfer Library version " + Sepa::VERSION
+  end
+
+  def test_receiver_is_is_set_correctly
+    receiver_id_node = @doc.at("//bxd:ReceiverId", 'bxd' => 'http://model.bxd.fi')
+
+    assert_equal receiver_id_node.content, @nordea_generic_params[:target_id]
+  end
+
+  def test_cert_is_added_correctly
+    wsse = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd'
+
+    added_cert = @doc.at(
+      "//wsse:BinarySecurityToken", 'wsse' => wsse
+    ).content
+
+    actual_cert = OpenSSL::X509::Certificate.new(
+      @nordea_generic_params.fetch(:cert)
+    ).to_s
+
+    actual_cert = actual_cert.split('-----BEGIN CERTIFICATE-----')[1]
+    actual_cert = actual_cert.split('-----END CERTIFICATE-----')[0]
+    actual_cert = actual_cert.gsub(/\s+/, "")
+
+    assert_equal added_cert, actual_cert
+  end
+
+  def test_body_digest_is_calculated_correctly
+    sha1 = OpenSSL::Digest::SHA1.new
+
+    # Digest which is calculated from the body and added to the header
+    added_digest = @doc.at(
+      "//dsig:Reference[@URI='#sdf6sa7d86f87s6df786sd87f6s8fsda']/dsig:DigestValue",
+      'dsig' => 'http://www.w3.org/2000/09/xmldsig#'
+    ).content
+
+    body_node = @doc.at(
+      "//env:Body", 'env' => 'http://schemas.xmlsoap.org/soap/envelope/'
+    )
+
+    body_node = body_node.canonicalize(
+      mode = Nokogiri::XML::XML_C14N_EXCLUSIVE_1_0,
+      inclusive_namespaces = nil, with_comments = false
+    )
+
+    actual_digest = Base64.encode64(sha1.digest(body_node)).strip
+
+    assert_equal actual_digest, added_digest
+  end
+
+  def test_header_created_timestamp_is_added_correctly
+    wsu = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'
+
+    timestamp_node = @doc.at(
+      "//wsu:Created", 'wsu' => wsu
+    )
+
+    timestamp = Time.strptime(timestamp_node.content, '%Y-%m-%dT%H:%M:%S%z')
+
+    assert timestamp <= Time.now && timestamp > (Time.now - 60)
+  end
+
+  def test_header_expires_timestamp_is_added_correctly
+    wsu = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'
+
+    timestamp_node = @doc.at(
+      "//wsu:Expires", 'wsu' => wsu
+    )
+
+    timestamp = Time.strptime(timestamp_node.content, '%Y-%m-%dT%H:%M:%S%z')
+
+    assert timestamp <= (Time.now + 300) &&
+      timestamp > ((Time.now + 300) - 60)
+  end
+
+  def test_header_timestamps_digest_is_calculated_correctly
+    sha1 = OpenSSL::Digest::SHA1.new
+
+    added_digest = @doc.at(
+      "//dsig:Reference[@URI='#dsfg8sdg87dsf678g6dsg6ds7fg']/dsig:DigestValue",
+      'dsig' => 'http://www.w3.org/2000/09/xmldsig#'
+    ).content
+
+    wsu = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd'
+
+    timestamp_node = @doc.at(
+      "//wsu:Timestamp", 'wsu' => wsu
+    )
+
+    timestamp_node = timestamp_node.canonicalize(
+      mode = Nokogiri::XML::XML_C14N_EXCLUSIVE_1_0, inclusive_namespaces = nil,
+      with_comments = false
+    )
+
+    actual_digest = Base64.encode64(sha1.digest(timestamp_node)).strip
+
+    assert_equal actual_digest, added_digest
+  end
+
+  def test_signature_is_calculated_correctly
+    sha1 = OpenSSL::Digest::SHA1.new
+
+    private_key = OpenSSL::PKey::RSA.new(@nordea_generic_params.fetch(:private_key))
+
+    added_signature = @doc.at(
+      "//dsig:SignatureValue",
+      'dsig' => 'http://www.w3.org/2000/09/xmldsig#'
+    ).content
+
+    signed_info_node = @doc.at("//dsig:SignedInfo", 'dsig' => 'http://www.w3.org/2000/09/xmldsig#')
+
+    signed_info_node = signed_info_node.canonicalize(
+      mode = Nokogiri::XML::XML_C14N_EXCLUSIVE_1_0, inclusive_namespaces = nil,
+      with_comments = false
+    )
+
+    actual_signature = Base64.encode64(
+      private_key.sign(sha1, signed_info_node)
+    ).gsub(/\s+/, "")
+
+    assert_equal actual_signature, added_signature
+  end
+
+  def test_should_validate_against_schema
+    Dir.chdir(SCHEMA_PATH) do
+      xsd = Nokogiri::XML::Schema(IO.read('soap.xsd'))
+      assert xsd.valid?(@doc)
+    end
+  end
+
+  def test_schema_validation_should_fail_with_wrong_must_understand_value
+    wsse = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd'
+    security_node = @doc.at(
+      '//wsse:Security', 'wsse' => wsse
+    )
+
+    security_node['env:mustUnderstand'] = '3'
+
+    Dir.chdir(SCHEMA_PATH) do
+      xsd = Nokogiri::XML::Schema(IO.read('soap.xsd'))
+      refute xsd.valid?(@doc)
+    end
+  end
+
+  def test_should_validate_against_ws_security_schema
+    wsse = 'http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd'
+
+    ws_node = @doc.xpath(
+      '//wsse:Security', 'wsse' => wsse
+    )
+
+    ws_node = ws_node.to_xml
+
+    ws_node = Nokogiri::XML(ws_node)
+
+    Dir.chdir(SCHEMA_PATH) do
+      xsd = Nokogiri::XML::Schema IO.read 'oasis-200401-wss-wssecurity-secext-1.0.xsd'
+      assert xsd.valid?(ws_node)
+    end
+  end
+
+end

data/test/sepa/banks/danske/danske_get_bank_cert_test.rb

@@ -0,0 +1,111 @@
+require 'test_helper'
+
+class DanskeGetBankCertTest < ActiveSupport::TestCase
+
+  def setup
+    @get_bank_cert_params = {
+      bank: :danske,
+      command: :get_bank_certificate,
+      bank_root_cert_serial: '1111110002',
+      customer_id: '360817',
+      request_id: SecureRandom.hex(5)
+    }
+
+    @doc = Sepa::SoapBuilder.new(@get_bank_cert_params)
+    @doc = Nokogiri::XML(@doc.to_xml)
+
+    # Namespaces
+    @pkif = 'http://danskebank.dk/PKI/PKIFactoryService'
+    @elem = 'http://danskebank.dk/PKI/PKIFactoryService/elements'
+  end
+
+  def test_should_initialize_request_with_proper_params
+    assert Sepa::SoapBuilder.new(@get_bank_cert_params).to_xml
+  end
+
+  def test_should_get_error_if_command_missing
+    @get_bank_cert_params.delete(:command)
+
+    assert_raises(ArgumentError) do
+      Sepa::SoapBuilder.new(@get_bank_cert_params)
+    end
+  end
+
+  def test_sender_id_is_properly_set
+    assert_equal @get_bank_cert_params[:customer_id],
+      @doc.at('SenderId', 'xmlns' => @pkif).content
+  end
+
+  def test_customer_id_is_properly_set
+    assert_equal @get_bank_cert_params[:customer_id],
+      @doc.at('CustomerId', 'xmlns' => @pkif).content
+  end
+
+  def test_header_request_id_is_properly_set
+    request_id = @doc.at("RequestId", 'xmlns' => @pkif).content
+
+    assert request_id =~ /^[0-9A-F]+$/i
+    assert_equal request_id.length, 10
+  end
+
+  def test_header_timestamp_is_set_correctly
+    timestamp = @doc.at("Timestamp", 'xmlns' => @pkif).content
+    timestamp = Time.strptime(timestamp, '%Y-%m-%dT%H:%M:%S%z')
+
+    assert timestamp <= Time.now && timestamp > (Time.now - 60)
+  end
+
+  def test_interface_version_is_correctly_set
+    version = @doc.at('InterfaceVersion', 'xmlns' => @pkif).content
+    assert version.length >= 1 && version.length <= 10
+  end
+
+  def test_bank_root_cert_serial_is_correctly_set
+    assert_equal @get_bank_cert_params[:bank_root_cert_serial],
+      @doc.at('BankRootCertificateSerialNo', 'xmlns' => @elem).content
+  end
+
+  def test_request_timestamp_is_set_correctly
+    timestamp = @doc.at("Timestamp", 'xmlns' => @elem).content
+    timestamp = Time.strptime(timestamp, '%Y-%m-%dT%H:%M:%S%z')
+
+    assert timestamp <= Time.now && timestamp > (Time.now - 60)
+  end
+
+  def test_request_request_id_is_properly_set
+    request_id = @doc.at("RequestId", 'xmlns' => @elem).content
+
+    assert request_id =~ /^[0-9A-F]+$/i
+    assert_equal request_id.length, 10
+  end
+
+  def test_should_validate_against_soap_schema
+    Dir.chdir(SCHEMA_PATH) do
+      xsd = Nokogiri::XML::Schema(IO.read('soap.xsd'))
+      assert xsd.valid?(@doc)
+    end
+  end
+
+  def test_request_should_validate_against_pki_service_schema
+    request = @doc.css('GetBankCertificateRequest', 'xmlns' => @elem).to_xml
+    request = Nokogiri::XML(request)
+
+    Dir.chdir(SCHEMA_PATH) do
+      xsd = Nokogiri::XML::Schema(IO.read('PKIFactory.xsd'))
+      assert xsd.valid?(request)
+    end
+  end
+
+  def test_invalid_bank_root_cert_serial_should_fail_schema_validation
+    @doc.at('BankRootCertificateSerialNo', 'xmlns' => @elem).content = '1' * 65
+
+    request = @doc.css('GetBankCertificateRequest', 'xmlns' => @elem).to_xml
+    request = Nokogiri::XML(request)
+
+    Dir.chdir(SCHEMA_PATH) do
+      xsd = Nokogiri::XML::Schema(IO.read('PKIFactory.xsd'))
+      refute xsd.valid?(request)
+    end
+  end
+
+end

data/test/sepa/{danske_test_keys/danskeroot.pem → banks/danske/keys/bank_root_cert.pem}

@@ -22,4 +22,4 @@ asiclsO38cSn2qriJPIrCREPOpRVqrGQRbZQhmDiB198hpAdLp38khJon/gXbR7u
 9e0rN8MIM4sXn+lFuQIWiPuv+3llGSoLlIxJnjiQQ9FDjhwN5U+N1N2aHaLc5AHu
 4X/qRutLCy7AYUJZMPBoakPLscYceW2Ztvx4VAyOXgHDdvmz0Bd58XWOs1A9bNMZ
 FeYAB14D9yQRCkXYLhr6sm8HuyqaIkGChFpNb+Gf8gcPvtw=
------END CERTIFICATE-----
+-----END CERTIFICATE-----

data/test/sepa/banks/danske/keys/bank_signing_cert.pem

@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/test/sepa/banks/danske/keys/danske_encryption.crt

@@ -0,0 +1,24 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/test/sepa/banks/danske/keys/enc_private_key.pem

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/test/sepa/banks/danske/keys/own_enc_cert.pem

@@ -0,0 +1,21 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/test/sepa/banks/danske/keys/own_signing_cert.pem

@@ -0,0 +1,22 @@
+-----BEGIN CERTIFICATE-----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+-----END CERTIFICATE-----

data/test/sepa/banks/danske/keys/signing_private_key.pem

@@ -0,0 +1,27 @@
+-----BEGIN RSA PRIVATE KEY-----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+-----END RSA PRIVATE KEY-----

data/test/sepa/banks/danske/responses/create_cert.xml

@@ -0,0 +1,38 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soapenv:Envelope xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/" xmlns:pkif="http://danskebank.dk/PKI/PKIFactoryService" xmlns:elem="http://danskebank.dk/PKI/PKIFactoryService/elements" xmlns:xd="http://www.w3.org/2000/09/xmldsig#">
+  <soapenv:Header/>
+  <soapenv:Body>
+    <CreateCertificateOut xmlns="http://danskebank.dk/PKI/PKIFactoryService">
+      <pkif:ResponseHeader xmlns="">
+        <pkif:SenderId>360817</pkif:SenderId>
+        <pkif:CustomerId>360817</pkif:CustomerId>
+        <pkif:RequestId>494d9bf886</pkif:RequestId>
+        <pkif:Timestamp>2014-06-11T10:46:37Z</pkif:Timestamp>
+        <pkif:InterfaceVersion>1</pkif:InterfaceVersion>
+        <pkif:Environment>customertest</pkif:Environment>
+      </pkif:ResponseHeader>
+      <tns:CreateCertificateResponse xmlns:tns="http://danskebank.dk/PKI/PKIFactoryService/elements" xmlns="" xml:id="response">
+        <tns:ReturnCode>00</tns:ReturnCode>
+        <tns:ReturnText>OK</tns:ReturnText>
+        <tns:EncryptionCert>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</tns:EncryptionCert>
+        <tns:SigningCert>MIIDnzCCAoegAwIBAgIHHoy+tGx4NTANBgkqhkiG9w0BAQsFADCBwjEQMA4GA1UEAxMHREJHQ0FEQjELMAkGA1UEBhMCREsxEzARBgNVBAcTCkNvcGVuaGFnZW4xEDAOBgNVBAgTB0Rlbm1hcmsxGjAYBgNVBAoTEURhbnNrZSBCYW5rIEdyb3VwMRgwFgYDVQQLEw9EYW5za2UgQmFuayBBL1MxGDAWBgNVBAUTDzYxMTI2MjI4MjIzMDEwMTEJMAcGA1UEBBMAMQkwBwYDVQQqEwAxCTAHBgNVBAwTADEJMAcGA1UEERMAMB4XDTEwMDUyODExMTgzOVoXDTEyMDUyNzExMTgzOVowgaYxIDAeBgNVBAMTF0JFTkdUU1NPTiBPRyBGUi4gSkVOU0VOMQswCQYDVQQGEwJESzEcMBoGA1UEChMTREJUUyBERU1PIDEuICgzNEFLKTEeMBwGA1UECxMVQ09SUE9SQVRFIERFVkVMT1BNRU5UMTcwNQYDVQQFEy5TRS1LRVJIVi9EQUJBOjAwOTIxMDA4NDEtQUdSOjA2MTA0OC1VU1I6MDYxMTMzMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCfh+ajEvsFS1kByPsjReO+EmyFglGDiCBh7voya2aSbvGMQm/aAYugTliAhoklq4adwUwqjf86gon3ZdUMDBmDpJiPlxeexBHesOjr32hxzO8u67tS5o1xfDex3ga192g+94pAJsqmn3Fc8LJ0Wn2zJPtYCTYvbrx6551QLiD3fwIDAQABozgwNjAJBgNVHQ4EAgQAMBkGA1UdIwQSMBCADsLGxMP29vnBwsTCxsTDMA4GA1UdDwEB/wQEAwIGwDANBgkqhkiG9w0BAQsFAAOCAQEASgxJaAoWP08MKVnuvNxG7EkmogFUfKCX7fWrHYxDzEs5uhnRQ6IR4GitTHEM/BE5KNGu6MuHuKMhp4HuMBg5YzaFtk5yFk+K6BjLEEFwz/NBFLyrtPmrezxjmxMYx4PRTqeyEthOIkZ1KFQvzxB1Vg2Kt5fqdvxKVODAFstJB2nE3uICnrOQmHlo/R/1rp0J/VQnOsWdgKmIFhFlFdFpWhI7m1ry7cuilHPdCHq+M83jGfTYVXulwbxDYv0LPHZGzCxoAnxZQM4r2HqwXTCZiRT/eP+fEv7A571aHb9GhJhQQQ0lStd1vhOJu1LlO3fe68SSKSye5CozKwvvlEwbag==</tns:SigningCert>
+        <tns:CACert>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</tns:CACert>
+        <tns:RequestId/>
+        <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
+          <SignedInfo>
+            <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+            <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+            <Reference URI="#response">
+              <Transforms>
+                <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+                <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+              </Transforms>
+              <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+              <DigestValue>2vCYl3h7ksRgk7IyV2axgpXxTWM=</DigestValue>
+            </Reference>
+          </SignedInfo>
+          <SignatureValue>CqPQW88gjJayDovXbk++IXJ5yjAJNf5+BL6wodkwIErqLdK3DYeAn9T6MQRNciB7POZkKqtnFj4CG1mbpGRCP5yduaBYP96uUoRSZiGuFHqb5HvMIgMvDCsnRJX11tUaMhrZkktYb0Xx2ulPrbLm/n9kW9L0oZftEijm7ixYSIsNEdJMHxWqCDGQCzLwD5zz512nNHEm3Ddimvh3mOqZ6deGtfODl4KuK247NNuak6Pjz9sE5hJnwDi4E1jtme735HEcxkrtYlqTIOjPXS/xRKkHEW6R59R3DR3FpYAo3H+SR/2WptoQhaBvVtlzle9Z8BG2JFRnbudAo3CkA245Vg==</SignatureValue><KeyInfo><X509Data><X509Certificate>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</X509Certificate><X509IssuerSerial><X509IssuerName>serialNumber=611262281110002, OU=Danske Bank Group, O=Danske Bank Group, ST=Denmark, L=Copenhagen, C=DK, CN=DBGROOT</X509IssuerName><X509SerialNumber>3333910003</X509SerialNumber></X509IssuerSerial></X509Data></KeyInfo></Signature>
+      </tns:CreateCertificateResponse>
+    </CreateCertificateOut>
+  </soapenv:Body>
+</soapenv:Envelope>

data/test/sepa/banks/danske/responses/get_bank_cert.xml

@@ -0,0 +1,37 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<soapenv:Envelope xmlns:xd="http://www.w3.org/2000/09/xmldsig#" xmlns:elem="http://danskebank.dk/PKI/PKIFactoryService/elements" xmlns:pkif="http://danskebank.dk/PKI/PKIFactoryService" xmlns:soapenv="http://schemas.xmlsoap.org/soap/envelope/">
+  <soapenv:Header/>
+  <soapenv:Body>
+    <GetBankCertificateOut xmlns="http://danskebank.dk/PKI/PKIFactoryService">
+      <pkif:ResponseHeader xmlns="">
+        <pkif:SenderId>360817</pkif:SenderId>
+        <pkif:CustomerId>360817</pkif:CustomerId>
+        <pkif:RequestId>b90999d5c0</pkif:RequestId>
+        <pkif:Timestamp>2014-06-11T08:21:11Z</pkif:Timestamp>
+        <pkif:InterfaceVersion>1</pkif:InterfaceVersion>
+      </pkif:ResponseHeader>
+      <pkie:GetBankCertificateResponse xmlns="" xmlns:pkie="http://danskebank.dk/PKI/PKIFactoryService/elements" xml:id="response">
+        <pkie:ReturnCode>00</pkie:ReturnCode>
+        <pkie:ReturnText>OK</pkie:ReturnText>
+        <pkie:BankEncryptionCert>MIIEATCCAumgAwIBAgIFAQjv8bMwDQYJKoZIhvcNAQELBQAwgZgxEDAOBgNVBAMTB0RCR1JPT1QxCzAJBgNVBAYTAkRLMRMwEQYDVQQHEwpDb3BlbmhhZ2VuMRAwDgYDVQQIEwdEZW5tYXJrMRowGAYDVQQKExFEYW5za2UgQmFuayBHcm91cDEaMBgGA1UECxMRRGFuc2tlIEJhbmsgR3JvdXAxGDAWBgNVBAUTDzYxMTI2MjI4MTExMDAwMjAeFw0xMjA4MDEwMDAwMDBaFw0xNDEwMzEwMDAwMDBaMIGYMRAwDgYDVQQDEwdEUENSWVBUMQswCQYDVQQGEwJESzETMBEGA1UEBxMKQ29wZW5oYWdlbjEQMA4GA1UECBMHRGVubWFyazEaMBgGA1UEChMRRGFuc2tlIEJhbmsgR3JvdXAxGjAYBgNVBAsTEURhbnNrZSBCYW5rIEdyb3VwMRgwFgYDVQQFEw82MTEyNjIyODQ5MTAwMDMwggEgMA0GCSqGSIb3DQEBAQUAA4IBDQAwggEIAoIBAQC/kHrOvHOueBsit9drxIHpaD7mXINypXS/l9PbbOZ0lZKVEfW9gtG8xk9XggsPXHJMF/PXpG6mveXvPu9WW/XpryAUqGfvYsC7Px3ixaJb2EMOL+2mJYd0v5HKg5RuYkQ82k3K01hMNEGYs0OotjNVAimQcTLtVPDGBjK5BUAiwady9LpI6afo7roJWnRmsvSvinDgBqswnfCvUfSfM8cZyhnLLC2uj1kBHAD/5xpllmS3aq1M8LqFkBYcCE5PdPmFWhGUumZ/Y5qLjDgcPMAPvUaKLqOsh22jvPCZ0pm17eV0bSQzWe5e0zkgCYAepuFRazSlkJQYBdS47Mp68dY5AgEDo1IwUDAfBgNVHSMEGDAWgBSE+uW/3pFJZt/FilLDs7ezIBzHbTAdBgNVHQ4EFgQUP6wHVNOmznu212c08M3oeYjeXW4wDgYDVR0PAQH/BAQDAgQwMA0GCSqGSIb3DQEBCwUAA4IBAQAvJBfPug+ixGL/zWUnKMweV80atZXMjHJEn4mOE+iUkCNONLImMMt6MXJysnJViL1gL5xMrka6A62PLLsVkl79kxDDbzXMPfGt5/mB9L7CMpyzaID0acDii3rsZwT3Wxpnate6wowN4zpmXgpCpTDGbxjuVRiOArsjQblerhfxnD/UAieZ1IWozIANs6SVms/TuOB+bODUr06ITxBkDJhizOJxjsXRIAtwZvvrH4qGjJz5qFcPb3nz4TxwswU8X6yvbtqF+q4aAKPA6ZydnGZFQSoSzNJtcF28T1ItxEHN3+xyQqXpTgFviiuL277LaAl9YUFFnSgeh7GiFitWJPfD</pkie:BankEncryptionCert>
+        <pkie:BankSigningCert>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</pkie:BankSigningCert>
+        <pkie:BankRootCert>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</pkie:BankRootCert>
+        <pkie:RequestId/>
+        <Signature xmlns="http://www.w3.org/2000/09/xmldsig#">
+          <SignedInfo>
+            <CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+            <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+            <Reference URI="#response">
+              <Transforms>
+                <Transform Algorithm="http://www.w3.org/2000/09/xmldsig#enveloped-signature"/>
+                <Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+              </Transforms>
+              <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+              <DigestValue>hlJfqr9mI7Z3VePrAg3Pklb9ABk=</DigestValue>
+            </Reference>
+          </SignedInfo>
+          <SignatureValue>G8A9IL/ZKjcT8B4gTvUQm+yDBQRh3TfUXxvhi1CtdjfvpVCOpsjH+E1Q6BTKC2ngcBdPMuP0Yp6wZhOH0EvQu9apqWtZeKvDY8AUGWM8HxglnhEQNrvzw2Z+LMHKeg5PIdG6YMjOcmNu7chy5E9NhUmhj9ic8hJOiCE00vjiv+I2YeQC6EJ6J7UjIgJWtMlsgzvuz5jhKmvYDh3MYSmfeuHTbm8QEM7f83UgmFw2UXuN/q5ahMxJlH28Ix3WGHZ5OFjSioKT125hbz5AQ6JEry8E6qiEkSLtLfmiYnv9zNqIItcm9TVgurqoKAZObzkCcADs+hoNEHXbE3CvNHUvog==</SignatureValue><KeyInfo><X509Data><X509Certificate>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</X509Certificate><X509IssuerSerial><X509IssuerName>serialNumber=611262281110002, OU=Danske Bank Group, O=Danske Bank Group, ST=Denmark, L=Copenhagen, C=DK, CN=DBGROOT</X509IssuerName><X509SerialNumber>3333910003</X509SerialNumber></X509IssuerSerial></X509Data></KeyInfo></Signature>
+      </pkie:GetBankCertificateResponse>
+    </GetBankCertificateOut>
+  </soapenv:Body>
+</soapenv:Envelope>