A sane XML Signature (xmldsig) extension for defusedxml ElementTree
Project description
SignXML is an implementation of the W3C XML Signature standard in Python. This standard (also known as XMLDSig) is used to provide payload security in SAML 2.0, among other uses. SignXML implements all of the required components of the standard. Its features are:
Extensions to allow the use of stronger hash functions (e.g. SHA256 instead of SHA1)
Extensions to allow signing with and verifying X.509 certificate chains, including hostname/CN validation
Modern Python compatibility (2.7-3.4+ and PyPy)
Minimal and reliable dependency footprint: lxml, pycrypto, eight, pyOpenSSL
Comprehensive testing and continuous integration
Simple interface with useful defaults
Compactness, readability, and extensibility
Installation
pip install signxml
Synopsis
from signxml import xmldsig
cert = open("example.pem").read()
key = open("example.key").read()
root = ElementTree.fromstring(data)
xmldsig(root).sign(key=key, cert=cert)
xmldsig(root).verify()
Links
Bugs
Please report bugs, issues, feature requests, etc. on GitHub.
License
Licensed under the terms of the Apache License, Version 2.0.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.