Skip to main content

A sane XML Signature (xmldsig) extension for defusedxml ElementTree

Project description

SignXML is an implementation of the W3C XML Signature standard in Python. This standard (also known as XMLDSig) is used to provide payload security in SAML 2.0, among other uses. SignXML implements all of the required components of the standard. Its features are:

  • Extensions to allow the use of stronger hash functions (e.g. SHA256 instead of SHA1)

  • Extensions to allow signing with and verifying X.509 certificate chains, including hostname/CN validation

  • Modern Python compatibility (2.7-3.4+ and PyPy)

  • Minimal and reliable dependency footprint: lxml, pycrypto, eight, pyOpenSSL

  • Comprehensive testing and continuous integration

  • Simple interface with useful defaults

  • Compactness, readability, and extensibility

Installation

pip install signxml

Synopsis

from signxml import xmldsig

cert = open("example.pem").read()
key = open("example.key").read()
root = ElementTree.fromstring(data)
xmldsig(root).sign(key=key, cert=cert)
xmldsig(root).verify()

Authors

  • Andrey Kislyuk

License

Licensed under the terms of the Apache License, Version 2.0.

https://travis-ci.org/kislyuk/signxml.png https://coveralls.io/repos/kislyuk/signxml/badge.png?branch=master https://pypip.in/v/signxml/badge.png https://pypip.in/d/signxml/badge.png

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

signxml-0.1.0.tar.gz (7.9 kB view hashes)

Uploaded Source

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page