Skip to content
Connect.js middleware to sign HTTTP responses.
JavaScript
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Failed to load latest commit information.
test
.gitignore
.travis.yml
LICENSE
index.js
package.json
readme.md
signingstream.js

readme.md

Connect-pgp

A middleware for Connect.js signing HTTP responses.

Usage

var connect = require('connect');
var pgpsign = require('connect-pgp');

// This is your super signing own function!
function doSign(msg, callback) {
  // Do signing stuff...
  callback(err, pgpSignedMessage);
}

// New connect app
var app = connect();

// Now signing HTTP requests!
app.use(pgpsign(doSign));

Triggering

Middleware triggers on HTTP header:

"Accept: multipart/signed"

then answers:

  HTTP/1.1 200 OK
  Content-Type: multipart/signed; boundary=bar; micalg=pgp-sha1; protocol="application/pgp-signature"

  --bar
  Content-Type: text/plain; charset=iso-8859-1
  Content-Transfer-Encoding: quoted-printable

& This is the body content.
& 
& Every word and every space in the body content body will be
& signed, even the two fields "Content-Type" and "Content-Transfer-Encoding"
& above, with the new line before this body content.

  --bar
  Content-Type: application/pgp-signature

  -----BEGIN PGP MESSAGE-----
  Version: 2.6.2

  iQCVAwUBMJrRF2N9oWBghPDJAQE9UQQAtl7LuRVndBjrk4EqYBIb3h5QXIX/LC//
  jJV5bNvkZIGPIcEmI5iFd9boEgvpirHtIREEqLQRkYNoBActFBZmh9GC3C041WGq
  uMbrbxc+nIs1TIKlA08rVi9ig/2Yh7LFrK5Ein57U/W72vgSxLhe/zhdfolT9Brn
  HOxEa44b+EI=
  =ndaj
  -----END PGP MESSAGE-----

  --bar--

N.B.: the part of the response with '&' is what is signed.

License

This software is provided under MIT license.

Something went wrong with that request. Please try again.