WARNING: This has never received any sort of security review, don't use it.
This library is a pure-Python implementation of X.509 certificate path building
and validation, built on top of
from cryptography import x509 from validator import X509Validator, ValidationContext validator = X509Validator([list-of-trusted-x509-certificates]) validator.validate( leaf_certificate ValidationContext( name=x509.DNSName(hostname), extra_certs=[list-of-intermediate-x509-certificates], extended_key_usage=x509.ExtendedKeyUsageOIDs.SERVER_AUTH, ) )
Will return the built chain on success, or raise an
Work in progress
See the issue tracker for things that are currently known to be unimplemented (seek existential assistance for things that are not known to be unimplemented).