Signed JSON

Signs JSON objects with ED25519 signatures.

Features

More than one entity can sign the same object.
Each entity can sign the object with more than one key making it easier to rotate keys
ED25519 can be replaced with a different algorithm.
Unprotected data can be added to the object under the "unsigned" key.

Installing

pip install signedjson

Using

from signedjson.key import generate_signing_key, get_verify_key
from signedjson.sign import (
    sign_json, verify_signed_json, SignatureVerifyException
)

signing_key = generate_signing_key('zxcvb')
signed_json = sign_json({'my_key': 'my_data'}, 'Alice', signing_key)

verify_key = get_verify_key(signing_key)

try:
    verify_signed_json(signed_json, 'Alice', verify_key)
    print 'Signature is valid'
except SignatureVerifyException:
    print 'Signature is invalid'

Format

{
    "<protected_name>": "<protected_value>",
    "signatures": {
        "<entity_name>": {
            "ed25519:<key_id>": "<unpadded_base64_signature>"
        }
    },
    "unsigned": {
        "<unprotected_name>": "<unprotected_value>",
    }
}

Name		Name	Last commit message	Last commit date
Latest commit History 42 Commits
.github		.github
.idea		.idea
changelog.d		changelog.d
signedjson		signedjson
tests		tests
.flake8		.flake8
.gitignore		.gitignore
.travis.yml		.travis.yml
CHANGELOG.md		CHANGELOG.md
LICENSE		LICENSE
MANIFEST.in		MANIFEST.in
README.rst		README.rst
RELEASING.md		RELEASING.md
pyproject.toml		pyproject.toml
setup.py		setup.py
tox.ini		tox.ini

License

matrix-org/python-signedjson

Folders and files

Latest commit

History

Repository files navigation

Signed JSON

Features

Installing

Using

Format

About

Resources

License

Security policy

Stars

Watchers

Forks

Languages