(Chilkat2-Python) Sign a File to Create a .p7s (Detached Signature)

Chilkat2-Python example to create a detached signature file (.p7s) for any type file. The signature can be verified by calling VerifyP7S and passing the original filename and the .p7s filename.

Chilkat2 Python Downloads install with pip pip3 install chilkat2 or download... Python Module for Windows, Linux, Alpine Linux, MacOS, Solaris

import sys
import chilkat2

# This example requires the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

crypt = chilkat2.Crypt2()

# Use a digital certificate and private key from a PFX file (.pfx or .p12).
signingCertSubject = "Acme Inc"
pfxFilename = "/Users/chilkat/testData/pfx/acme.pfx"
pfxPassword = "test123"

certStore = chilkat2.CertStore()
success = certStore.LoadPfxFile(pfxFilename,pfxPassword)
if (success != True):
    print(certStore.LastErrorText)
    sys.exit()

# cert is a CkCert
cert = certStore.FindCertBySubjectCN(signingCertSubject)
if (certStore.LastMethodSuccess == False):
    print("Failed to find certificate by subject common name.")
    sys.exit()

# Tell the crypt component to use this cert.
success = crypt.SetSigningCert(cert)

# We can sign any type of file, creating a .p7s as output:
inFile = "/Users/chilkat/testData/pdf/sample.pdf"
sigFile = "/Users/chilkat/testData/p7s/sample.p7s"

success = crypt.CreateP7S(inFile,sigFile)
if (success == False):
    print(crypt.LastErrorText)

    sys.exit()

success = crypt.VerifyP7S(inFile,sigFile)
if (success == False):
    print(crypt.LastErrorText)

    sys.exit()

print("Success!")