python XML security (xml-dsig)
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
src/xmlsec
.codeclimate.yml
.gitignore
.hgignore
.travis.yml
CONTRIBUTORS
HACKING.txt
LICENSE.txt
MANIFEST.in
NEWS.txt
README.rst
bootstrap.py
buildout.cfg
issue_template.md
pull_request_template.md
requirements.txt
setup.cfg
setup.py

README.rst

python XML Security

Travis Build Coverage Requirements Status Code Climate License Format PyPI Version

This is a python implementation of XML-Security - XML-DSIG only right now. There are no dependencies except lxml and pyca/cryptography currently.

This code was inspired by https://github.com/andrewdyates/xmldsig (this implementation is a refactor and extension of that implementation) and in former versions used to include a pure-python RSA implementation https://github.com/andrewdyates/rsa_x509_pem by and with permission from Andrew Yates. Cryptographic primitives are now provided by pyca/cryptography (https://cryptography.io).

In order to sign with a PKCS#11-module you need to install pykcs11 (http://www.bit4id.org/pykcs11/)

This package is available under the NORDUnet BSD license (cf LICENSE.txt)

Limitations:

  • only support for RSA-SHA1/256/512 signatures with PKCS1.5 padding
  • no encryption support

Some of those limitations might be addressed. Patches and pull-requests are most welcome!