Sample code for 30+ languages & platforms
Chilkat2-Python

Create Egypt ITIDA CAdES-BES .p7s Signature (File to File)

See more Egypt ITIDA Examples

Demonstrates how to create a .p7s signature that fits Egypt's ITIDA requirements.

Chilkat Chilkat2-Python Downloads

Chilkat2-Python
import sys
import chilkat2

success = False

# This example assumes the Chilkat API to have been previously unlocked.
# See Global Unlock Sample for sample code.

crypt = chilkat2.Crypt2()

cert = chilkat2.Cert()

# There are many ways to load the certificate.  
# This example was created for a customer using an ePass2003 USB token.
# Assuming the USB token is the only source of a hardware-based private key..
success = cert.LoadFromSmartcard("")
if (success != True):
    print(cert.LastErrorText)
    sys.exit()

# Tell the crypt component to use this cert.
success = crypt.SetSigningCert(cert)
if (success != True):
    print(crypt.LastErrorText)
    sys.exit()

cmsOptions = chilkat2.JsonObject()
cmsOptions.UpdateBool("DigestData",True)
cmsOptions.UpdateBool("OmitAlgorithmIdNull",True)
crypt.CmsOptions = cmsOptions.Emit()

# The CadesEnabled property applies to all methods that create CMS/PKCS7 signatures. 
# To create a CAdES-BES signature, set this property equal to true. 
crypt.CadesEnabled = True

crypt.HashAlgorithm = "sha256"

jsonSigningAttrs = chilkat2.JsonObject()
jsonSigningAttrs.UpdateInt("contentType",1)
jsonSigningAttrs.UpdateInt("signingTime",1)
jsonSigningAttrs.UpdateInt("messageDigest",1)
jsonSigningAttrs.UpdateInt("signingCertificateV2",1)
crypt.SigningAttributes = jsonSigningAttrs.Emit()

# By default, all the certs in the chain of authentication are included in the signature.
# If desired, we can choose to only include the signing certificate:
crypt.IncludeCertChain = False

# Make sure we sign the utf-8 byte representation of the JSON string
crypt.Charset = "utf-8"

# Create the CAdES-BES signature, which does not contain the data being signed.
pathOfFileToSign = "someDir/someFile"
outputPath = "outDir/someFile.p7s"
success = crypt.CreateP7S(pathOfFileToSign,outputPath)
if (success != True):
    print(crypt.LastErrorText)
    sys.exit()

print("Success!")