Produce & verify TrueLayer API requests signatures

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for tl-flavio-barinas from gravatar.com tl-flavio-barinas Avatar for TrueLayer from gravatar.com TrueLayer

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: Other/Proprietary License (Apache-2.0 or MIT)

Author: tl-flavio-barinas

Tags truelayer

Requires: Python <4.0.0, >=3.8.1

Classifiers

Project description

truelayer-signing

Python package to produce & verify TrueLayer API requests signatures.

Install

pip install truelayer-signing

Generating a signature

tl_signature = sign_with_pem(KID, PRIVATE_KEY) \
    .set_method(HttpMethod.POST) \
    .set_path(path) \
    .add_header("Idempotency-Key", idempotency_key) \
    .set_body(body) \
    .sign()

See full example.

Verifying webhooks

The verify_with_jwks function may be used to verify webhook Tl-Signature header signatures.

# `jku` field is included in webhook signatures
jws_header = extract_jws_header(webhook_signature).jku

# check `jku` is an allowed TrueLayer url & fetch jwks JSON (not provided by this lib)
ensure_jku_allowed(jku)
jwks = fetch_jwks(jku)

# jwks may be used directly to verify a signature
verify_with_jwks(jwks, jws_header) \
    .set_method(HttpMethod.POST) \
    .set_path(path) \
    .add_headers(headers) \
    .set_body(body) \
    .verify(tl_signature)

See webhook server example.

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for tl-flavio-barinas from gravatar.com tl-flavio-barinas Avatar for TrueLayer from gravatar.com TrueLayer

Unverified details

These details have not been verified by PyPI
Project links
GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Meta

License: Other/Proprietary License (Apache-2.0 or MIT)

Author: tl-flavio-barinas

Tags truelayer

Requires: Python <4.0.0, >=3.8.1

Classifiers

Release history Release notifications | RSS feed

This version

0.3.4

0.3.3

0.3.2

0.3.1

0.3.0

0.3.0a0 pre-release

0.2.3

0.2.2

0.2.1

0.2.0

0.1.1

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

truelayer_signing-0.3.4.tar.gz (11.4 kB view hashes)

Uploaded Source

Built Distribution

truelayer_signing-0.3.4-py3-none-any.whl (18.3 kB view hashes)

Uploaded Python 3

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page