A simple Django package to facilitate request signing.

Navigation

Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE)

Author: Ahmed Hosny Ibrahim

Tags api_signing, simple_api_signing, django

Maintainers

Avatar for ahmedhosnycs from gravatar.com ahmedhosnycs Avatar for pentux from gravatar.com pentux

Classifiers

Project description

DRF Simple API Signing (SASigning) Introduction

STATUS

  • First Release (29 July 2018)

API Signing Benefits

  1. Identity Verification: You are sure that the request is coming from who you are expecting.
  2. You are sure that the message is not altered in communication channels.
  3. You can prevent relay attack (optional).

API Signing Workflow

Pseudo code explaining steps of API Signing Check in API:

1. Read a signature from header.
2. Construct the message. It may consist of
   * Secret Key
   * Request Method (PUT, GET, POST, ..)
   * URL Endpoint.
   * Request Body.
   * other arguments
those parameters are concatenated and separated by **delimeter** symbol.
3. Hash it with SHA256 using the Secret Key.

What SASigning Do?

SASigning provides an easy way to configure your API to accept, check and define signatures. It allows you to review plugin the signature checking in your flow.

SASIGNING DOCUMENTATION

Project details

Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: GNU General Public License v3 or later (GPLv3+) (GNU GENERAL PUBLIC LICENSE)

Author: Ahmed Hosny Ibrahim

Tags api_signing, simple_api_signing, django

Maintainers

Avatar for ahmedhosnycs from gravatar.com ahmedhosnycs Avatar for pentux from gravatar.com pentux

Classifiers


Release history Release notifications

This version

1.0.2

1.0.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Files for drf-simple-api-signing, version 1.0.2
Filename, size File type Python version Upload date Hashes
Filename, size drf_simple_api_signing-1.0.2-py3-none-any.whl (7.0 kB) File type Wheel Python version py3 Upload date Hashes View hashes
Filename, size drf-simple-api-signing-1.0.2.tar.gz (207.7 kB) File type Source Python version None Upload date Hashes View hashes

Supported by

Elastic Elastic Search Pingdom Pingdom Monitoring Google Google BigQuery Sentry Sentry Error logging AWS AWS Cloud computing DataDog DataDog Monitoring Fastly Fastly CDN DigiCert DigiCert EV certificate StatusPage StatusPage Status page