PKI testing tool
Project description
Certomancer
Quickly construct, mock & deploy PKI test configurations using simple declarative configuration. Includes CRL, OCSP and time stamping service provisioning.
Install with python setup.py install
, and see example.yml
for an example config file.
The CLI comes with a built-in help function (although it isn't very helpful at this stage).
Features
- Declarative, YAML-based configuration.
- Minimal input validation, so you can generate deliberately broken certificates if you need to.
requests-mock
integration.- Ultra-lightweight WSGI application to serve CRLs, OCSP responses, timestamps and more. This component requires Werkzeug, and optionally Jinja2 for the index view. There are no external dependencies.
- Plugin framework to support arbitrary certificate / CRL extensions and additional services.
These plugins are compatible with the WSGI and
requests-mock
integrations without additional configuration. - For particularly complicated scenarios where the plugin API or existing integrations aren't sufficient, it is very easy to use Certomancer as a library, or wrap it as a component of some other WSGI application.
- With pyca/cryptography installed, Certomancer can also output PKCS#12 files if your tests require those.
Non-features
This is a testing tool for developers that write software to interface with public-key infrastructure. It is NOT intended to be used to manage production PKI deployments. Certomancer is very much garbage-in garbage-out, and happily ignores validation & security best practices in favour of allowing you to abuse your codebase in the worst possible ways. Consider yourself warned.
Documentation
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
Hashes for certomancer-0.2.0-py3-none-any.whl
Algorithm | Hash digest | |
---|---|---|
SHA256 | 1c847ad698410a7d4405fd5877203aa8e1f44a92c50e52c0489704a2d3e7f877 |
|
MD5 | 3b5b4f948cfb2971f500452493c96ec1 |
|
BLAKE2b-256 | c9e25ebfbda12b13e8307eb1c00f4bbc7abbd1db1516f64d316ed722a6836e7b |