| accept-signature-script.py |
SRI Message Signature helper for `accept-signature` header validation for
<script> element requests.
It compares the `accept-signature` header delivered with a request to a
`header` GET parameter. If they match, a `matched` attribute on the current
script element will be set to true.
|
1619 |
| query-resource.py |
SRI Message Signature helper for `@query` tests
These all represent the following response:
> HTTP/1.1 200 OK
> Date: Tue, 20 Apr 2021 02:07:56 GMT
> Content-Type: application/json
> Unencoded-Digest: sha-256=:X48E9qOokqqrvdts8nOJRJN3OWDUoyWxBf7kbu9DBPE=:
> Content-Length: 18
> Signature-Input: signature=("unencoded-digest";sf "@query";req); \
> keyid="JrQLj5P/89iXES9+vFgrIy29clF9CC/oPPsw3c5D0bs="; \
> tag="sri"
> Signature: signature=[SEE NOTE BELOW]
>
> {"hello": "world"}
With the `signature` header governed by the query string.
|
3151 |
| resource.py |
SRI Message Signature helper, generating responses that:
* Include or exclude an `Integrity-Digest` header depending on the request's
`digest` parameter.
* Include or exclude an `Signature` header depending on the request's
`signature` parameter.
* Include or exclude an `Signature-Input` header depending on the request's
`signatureInput` parameter.
* Include or exclude `Access-Control-Allow-Origin: *` depending on the
request's `cors` parameter.
* Sets a `Content-Type` header from the request's `type` parameter.
* Echos the `body` parameter into the response body.
|
1621 |
| tentative |
|
|