Swarmauri signing facade plugin that aggregates registered SigningBase providers.
Project description
MediaSigner
MediaSigner packages the asynchronous Signer facade that orchestrates registered
SigningBase providers. Moving the facade into a standalone plugin keeps the
core standards library lightweight while still enabling drop-in discovery of
specialised signers such as CMS, JWS, OpenPGP, PDF, and XMLDSig providers.
Features
- Unified signing façade – talk to every installed
SigningBasethrough a single async API that automatically discovers entry-point contributions. - Format-aware routing – delegates signing and verification to the provider
registered for a format token such as
jws,pdf, orxmld. - Optional plugin bundles – install curated extras (e.g.
[plugins]) to bring in all available signer backends in one step. - Key-provider integration – share Swarmauri key providers with the facade so opaque key references resolve before signature creation.
- Production-ready CLI – inspect capabilities, sign payloads, and verify results directly from the command line for fast automation.
Installation
Using uv
uv add MediaSigner
# install every optional backend
uv add "MediaSigner[plugins]"
The [plugins] extra pulls in CMS, JWS, OpenPGP, PDF, and XMLDSig signers.
Using pip
pip install MediaSigner
# with every optional backend
pip install "MediaSigner[plugins]"
Usage
import asyncio
from MediaSigner import MediaSigner
from swarmauri_core.key_providers.IKeyProvider import IKeyProvider
# Optionally pass a key provider so plugins receive a shared source for
# retrieving signing material.
key_provider: IKeyProvider | None = None
signer = MediaSigner(key_provider=key_provider)
async def sign_payload(payload: bytes) -> None:
signatures = await signer.sign_bytes("jws", key="my-key", payload=payload)
assert signatures, "At least one signature should be returned"
print(signer.supports("jws"))
asyncio.run(sign_payload(b"payload"))
Integrating a key provider
Any Swarmauri key provider can be shared with the facade so backends receive ready-to-use key material:
import asyncio
from MediaSigner import MediaSigner
from swarmauri_keyprovider_inmemory import InMemoryKeyProvider
provider = InMemoryKeyProvider(keys={"local://demo": b"secret"})
signer = MediaSigner(key_provider=provider)
async def main() -> None:
signatures = await signer.sign_bytes(
"jws",
key="local://demo",
payload=b"demo",
alg="HS256",
opts={"kid": "demo"},
)
print(signatures[0].mode)
asyncio.run(main())
Discover installed plugins
Use the facade to list installed signers and inspect their capabilities:
for format_name in signer.supported_formats():
capabilities = signer.supports(format_name)
print(format_name, list(capabilities))
Why this structure?
- Separation of concerns – standards remain focused on common abstractions while the plugin encapsulates optional dependencies.
- Explicit opt-in – downstream projects can install only the signing stacks they need via the curated extras.
- Consistent ergonomics – usage matches the historical
swarmauri_standard.signing.Signerimport, preserving existing tutorials and code samples.
Command line utility
MediaSigner ships a small CLI for quick inspection and automation:
media-signer list # List available formats
media-signer supports jws # Show capability metadata
media-signer sign-bytes jws \
--alg HS256 \
--key key.json \
--input payload.bin \
--output signatures.json
media-signer verify-bytes jws \
--input payload.bin \
--sigs signatures.json \
--opts verify-keys.json
The CLI expects JSON files describing KeyRef objects and verification
materials matching the selected plugin.
Project Resources
- Source: https://github.com/swarmauri/swarmauri-sdk/tree/main/pkgs/plugins/media_signer
- Documentation: https://github.com/swarmauri/swarmauri-sdk/tree/main/pkgs/plugins/media_signer#readme
- Issues: https://github.com/swarmauri/swarmauri-sdk/issues
- Releases: https://github.com/swarmauri/swarmauri-sdk/releases
- Discussions: https://github.com/orgs/swarmauri/discussions
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Filter files by name, interpreter, ABI, and platform.
If you're not sure about the file name format, learn more about wheel file names.
Copy a direct link to the current filters
File details
Details for the file mediasigner-0.6.4.dev8.tar.gz.
File metadata
- Download URL: mediasigner-0.6.4.dev8.tar.gz
- Upload date:
- Size: 10.5 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.10.3 {"installer":{"name":"uv","version":"0.10.3","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
80b186cdac3096b307120d4feeea8026ddd00035bbb63026633adec930211899
|
|
| MD5 |
7f5d25888582bff6f630d91aec1b4bfd
|
|
| BLAKE2b-256 |
f8a8e0f27c34fc372ba1ee216ee2b237edc8c7157f2c134cf7441cec27a6f782
|
File details
Details for the file mediasigner-0.6.4.dev8-py3-none-any.whl.
File metadata
- Download URL: mediasigner-0.6.4.dev8-py3-none-any.whl
- Upload date:
- Size: 11.7 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: uv/0.10.3 {"installer":{"name":"uv","version":"0.10.3","subcommand":["publish"]},"python":null,"implementation":{"name":null,"version":null},"distro":{"name":"Ubuntu","version":"24.04","id":"noble","libc":null},"system":{"name":null,"release":null},"cpu":null,"openssl_version":null,"setuptools_version":null,"rustc_version":null,"ci":true}
File hashes
| Algorithm | Hash digest | |
|---|---|---|
| SHA256 |
9b019afe8239610b3113506e12e8fa44ae8f64599575c4c3cb06df90f2062e3e
|
|
| MD5 |
ec0a9226bc314466c2d416f0a2b3bfa1
|
|
| BLAKE2b-256 |
38ac1c4c38f60da7670247a95544bb7c2499aefb2a35f8422497a0cc048a8e34
|
