Chilkat HOME .NET Core C# Android™ AutoIt C C# C++ Chilkat2-Python CkPython Classic ASP DataFlex Delphi ActiveX Delphi DLL Go Java Lianja Mono C# Node.js Objective-C PHP ActiveX PHP Extension Perl PowerBuilder PowerShell PureBasic Ruby SQL Server Swift 2 Swift 3,4,5... Tcl Unicode C Unicode C++ VB.NET VBScript Visual Basic 6.0 Visual FoxPro Xojo Plugin
(CkPython) Verify XML Digital Signature with an RSA KeyThis example demonstrates how to verify an XML signature, where the RSA public key is embedded in the KeyInfo part of the Signature. When this is the case, nothing external is needed to verify the signature. This example requires Chilkat v9.5.0.69 or greater.
import sys import chilkat # This example requires the Chilkat API to have been previously unlocked. # See Global Unlock Sample for sample code. # The signed XML to be verified in this example contains the following: # <?xml version="1.0" encoding="UTF-8"?> # <Signature xmlns="http://www.w3.org/2000/09/xmldsig#"> # <SignedInfo> # <CanonicalizationMethod Algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315" /> # <SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1" /> # <Reference URI="#object"> # <DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1" /> # <DigestValue>OPnpF/ZNLDxJ/I+1F3iHhlmSwgo=</DigestValue> # </Reference> # </SignedInfo> # <SignatureValue>nihUFQg4mDhLgecvhIcKb9Gz8VRTOlw+adiZOBBXgK4JodEe5aFfCqm8WcRIT8GLLXSk8PsUP4//SsKqUBQkpotcAqQAhtz2v9kCWdoUDnAOtFZkd/CnsZ1sge0ndha40wWDV+nOWyJxkYgicvB8POYtSmldLLepPGMz+J7/Uws=</SignatureValue> # <KeyInfo> # <KeyValue> # <RSAKeyValue><Modulus>4IlzOY3Y9fXoh3Y5f06wBbtTg94Pt6vcfcd1KQ0FLm0S36aGJtTSb6pYKfyX7PqCUQ8wgL6xUJ5GRPEsu9gyz8ZobwfZsGCsvu40CWoT9fcFBZPfXro1Vtlh/xl/yYHm+Gzqh0Bw76xtLHSfLfpVOrmZdwKmSFKMTvNXOFd0V18=</Modulus><Exponent>AQAB</Exponent></RSAKeyValue> # </KeyValue> # </KeyInfo> # <Object Id="object">some text # with spaces and CR-LF.</Object> # </Signature> # The above XML is available at https://www.chilkatsoft.com/exampleData/signedSample1.xml # Fetch the XML and then verify it.. url = "https://www.chilkatsoft.com/exampleData/signedSample1.xml" http = chilkat.CkHttp() sbXml = chilkat.CkStringBuilder() success = http.QuickGetSb(url,sbXml) if (success != True): print(http.lastErrorText()) sys.exit() dsig = chilkat.CkXmlDSig() # First load the XML containing the signatures to be verified. # Note that this particular Signature already contains the RSA public key that will be used # for verification. success = dsig.LoadSignatureSb(sbXml) if (success != True): print(dsig.lastErrorText()) sys.exit() # The XML in this example contains only 1 signature. # It's possible that an XML document can contain multiple signatures. # Each can be verified as follows: i = 0 while i < dsig.get_NumSignatures() : # Select the Nth signature by setting the Selector property. dsig.put_Selector(i) # The bVerifyReferenceDigests argument determines if we want # to also verify each reference digest. If set to False, # then only the SignedInfo part of the Signature is verified. bVerifyReferenceDigests = True bVerified = dsig.VerifySignature(bVerifyReferenceDigests) print("Signature " + str(i + 1) + " verified = " + str(bVerified)) i = i + 1 |
© 2000-2024 Chilkat Software, Inc. All Rights Reserved.