gcrkrause
/
requests-http-signature
mirror of https://github.com/pyauth/requests-http-signature
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Revert "Use one-shot signing. Fixes #16" 

This reverts commit 053678a22e.
pull/21/head
Andrey Kislyuk 2020-04-25 07:18:14 -07:00
parent c29461aa4a
commit f1ced58164
No known key found for this signature in database
GPG Key ID: 8AFAFCD242818A52
1 changed files with 5 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
requests_http_signature/__init__.py
View File

@ -26,12 +26,14 @@ class Crypto:
key = self.load_pem_private_key(key, password=passphrase, backend=self.default_backend())
if self.algorithm in {"rsa-sha1", "rsa-sha256"}:
hasher = self.SHA1() if self.algorithm.endswith("sha1") else self.SHA256()
return key.sign(string_to_sign, padding=self.PKCS1v15(), algorithm=hasher)
signer = key.signer(padding=self.PKCS1v15(), algorithm=hasher)
elif self.algorithm in {"rsa-sha512"}:
hasher = self.SHA512()
return key.sign(string_to_sign, padding=self.PKCS1v15(), algorithm=hasher)
signer = key.signer(padding=self.PKCS1v15(), algorithm=hasher)
elif self.algorithm == "ecdsa-sha256":
return key.sign(string_to_sign, signature_algorithm=self.ec.ECDSA(algorithm=self.SHA256()))
signer = key.signer(signature_algorithm=self.ec.ECDSA(algorithm=self.SHA256()))
signer.update(string_to_sign)
return signer.finalize()
def verify(self, signature, string_to_sign, key):
if self.algorithm == "hmac-sha256":