You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
48 lines
1.7 KiB
48 lines
1.7 KiB
# -*- coding: utf-8 -*-
|
|
# © 2016 Danimar Ribeiro, Trustcode
|
|
# License AGPL-3.0 or later (http://www.gnu.org/licenses/agpl.html).
|
|
|
|
import signxml
|
|
from lxml import etree
|
|
from pytrustnfe.certificado import extract_cert_and_key_from_pfx
|
|
from signxml import XMLSigner
|
|
|
|
|
|
class Assinatura(object):
|
|
def __init__(self, arquivo, senha):
|
|
self.arquivo = arquivo
|
|
self.senha = senha
|
|
|
|
def assina_xml(self, xml_element, reference):
|
|
cert, key = extract_cert_and_key_from_pfx(self.arquivo, self.senha)
|
|
|
|
for element in xml_element.iter("*"):
|
|
if element.text is not None and not element.text.strip():
|
|
element.text = None
|
|
|
|
signer = XMLSigner(
|
|
method=signxml.methods.enveloped,
|
|
signature_algorithm="rsa-sha1",
|
|
digest_algorithm="sha1",
|
|
c14n_algorithm="http://www.w3.org/TR/2001/REC-xml-c14n-20010315#WithComments",
|
|
)
|
|
#import ipdb
|
|
#ipdb.set_trace()
|
|
ns = {}
|
|
ns[None] = signer.namespaces["ds"]
|
|
signer.namespaces = ns
|
|
|
|
ref_uri = ("#%s" % reference) if reference else None
|
|
signed_root = signer.sign(
|
|
xml_element, key=key.encode(), cert=cert.encode(), reference_uri=ref_uri
|
|
)
|
|
if reference:
|
|
element_signed = signed_root.find(".//*[@Id='%s']" % reference)
|
|
signature = signed_root.findall(
|
|
".//{http://www.w3.org/2000/09/xmldsig#}Signature"
|
|
)
|
|
|
|
if element_signed is not None and signature is not None:
|
|
element_intern = element_signed.getchildren()
|
|
element_intern.append(signature)
|
|
return etree.tostring(signed_root, encoding=str)
|