Python XML Signature library
Project description
SignXML is an implementation of the W3C XML Signature standard in Python (both “Second Edition” and Version 1.1). This standard (also known as XMLDSig) is used to provide payload security in SAML 2.0, among other uses. SignXML implements all of the required components of the standard. Its features are:
Extensions to allow signing with and verifying X.509 certificate chains, including hostname/CN validation
Modern Python compatibility (2.7-3.4+ and PyPy)
Minimal and reliable dependency footprint: lxml, pycrypto, eight, pyOpenSSL
Comprehensive testing and continuous integration
Simple interface with useful defaults
Compactness, readability, and extensibility
Installation
pip install signxml
Synopsis
from signxml import xmldsig
cert = open("example.pem").read()
key = open("example.key").read()
root = ElementTree.fromstring(data)
xmldsig(root).sign(key=key, cert=cert)
xmldsig(root).verify()
See the API documentation for more.
Links
W3C Recommendation: XML Signature Syntax and Processing (Second Edition)
W3C Recommendation: XML Signature Syntax and Processing Version 1.1
Bugs
Please report bugs, issues, feature requests, etc. on GitHub.
License
Licensed under the terms of the Apache License, Version 2.0.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.