| Name | certomancer JSON |
| Version |
0.12.0
JSON |
| download |
| home_page | |
| Summary | PKI testing tool |
| upload_time | 2024-03-16 00:02:30 |
| maintainer | |
| docs_url | None |
| author | |
| requires_python | |
| license | MIT |
| keywords |
pki
testing
|
| VCS |
 |
| bugtrack_url |
|
| requirements |
No requirements were recorded.
|
| Travis-CI |
No Travis.
|
| coveralls test coverage |
|
# Certomancer
<p align="center">
<img width="300" height="300" src="images/certomancer.svg" alt="logo">
</p>
[](https://pypi.org/project/certomancer/)
[](https://github.com/psf/black)
Quickly construct, mock & deploy PKI test configurations using simple declarative configuration.
Includes CRL, OCSP and time stamping service provisioning.
Requires Python 3.7 or later.
## Quick start
Certomancer is [available on PyPI](https://pypi.org/project/certomancer/). See `example.yml` for an example config file.
```bash
$ pip install 'certomancer[web-api]'
$ certomancer --config example.yml animate
```
This will run the Certomancer Animator WSGI app on your local machine, behind a development web
server. Point your browser to `http://localhost:9000` and take a look around.
For more information, see the [documentation](#Documentation) below.
## Installing the development version
To build and install an (unreleased) development version, you can proceed as follows.
```bash
$ git clone https://github.com/MatthiasValvekens/certomancer
$ cd certomancer
$ python -m build
$ pip install dist/certomancer*.whl
```
## Demo
There's a demo on asciinema.org, demonstrating some of the core features of Certomancer. See link below.
[](https://asciinema.org/a/406798)
## FOSDEM '22 talk
I gave a lightning talk on testing & mocking PKI services in the [Testing & Automation devroom](https://fosdem.org/2022/schedule/track/testing_and_automation/) at [FOSDEM 2022](https://fosdem.org/2022/). Certomancer was (of course) featured in the presentation.
If you want to learn more, or watch the recording, have a look at [the talk page](https://fosdem.org/2022/schedule/event/mockery_of_trust/) for further info. Slides are included as well.
## Features
* Certomancer's core APIs are stateless: the same request should always return the same result.
This property makes it very useful for automated testing.
* Note that "the same result" does not necessarily mean "byte-for-byte equal".
This is because some signing schemes (like ECDSA) involve random nonces. In addition to that,
time is also a factor in certain cases (but Certomancer does permit time manipulation).
* Declarative, YAML-based configuration.
* Minimal input validation, so you can generate deliberately broken certificates if you need to.
* ``requests-mock`` integration.
* Attribute certificate support (`0.7.0` and up)
* Ultra-lightweight WSGI application: the Certomancer Animator serves CRLs, OCSP responses,
timestamps and more. This component requires Werkzeug, and optionally Jinja2 for the index view.
Other than a web server and WSGI application server, there are no application dependencies.
* Plugin framework to support arbitrary certificate / CRL extensions and additional services.
These plugins are compatible with the WSGI and ``requests-mock`` integrations without
additional configuration.
* Certomancer is composable: since the Certomancer Animator is a bare-bones WSGI application,
you can plug it into whatever web application framework you want with minimal overhead.
Hence, for particularly complicated scenarios where the plugin API or existing integrations aren't
sufficient, it is very easy to use Certomancer as a library, or wrap it as a component
of some other WSGI application.
* With [pyca/cryptography](https://github.com/pyca/cryptography) installed, Certomancer can also
output PKCS#12 files if your tests require those.
* With [python-pkcs11](https://github.com/danni/python-pkcs11) installed, Certomancer can write
keys and certificates to PKCS#11 tokens as well.
## Non-features
Certomancer is a testing tool for developers that write software to interface with public-key
infrastructure. **It is *NOT* intended to be used to manage production PKI deployments.**
Certomancer is very much garbage-in garbage-out, and happily ignores validation &
security best practices in favour of allowing you to abuse your codebase in the worst possible ways.
Consider yourself warned.
## Documentation
* [Configuration](docs/config.md)
* [CLI commands](docs/cli.md)
* [Plugin API](docs/plugins.md)
* [Deploying Certomancer](docs/deploy.md)
Raw data
{
"_id": null,
"home_page": "",
"name": "certomancer",
"maintainer": "",
"docs_url": null,
"requires_python": "",
"maintainer_email": "",
"keywords": "pki,testing",
"author": "",
"author_email": "Matthias Valvekens <dev@mvalvekens.be>",
"download_url": "https://files.pythonhosted.org/packages/37/26/36b71beac4e0fec410a979b1d6b85e97dd91efb3df000410cc699e790a90/certomancer-0.12.0.tar.gz",
"platform": null,
"description": "# Certomancer\n\n<p align=\"center\">\n <img width=\"300\" height=\"300\" src=\"images/certomancer.svg\" alt=\"logo\">\n</p>\n\n\n[](https://pypi.org/project/certomancer/)\n\n[](https://github.com/psf/black)\n\nQuickly construct, mock & deploy PKI test configurations using simple declarative configuration.\nIncludes CRL, OCSP and time stamping service provisioning.\n\nRequires Python 3.7 or later.\n\n## Quick start\n\nCertomancer is [available on PyPI](https://pypi.org/project/certomancer/). See `example.yml` for an example config file.\n\n```bash\n$ pip install 'certomancer[web-api]'\n$ certomancer --config example.yml animate\n```\n\nThis will run the Certomancer Animator WSGI app on your local machine, behind a development web\nserver. Point your browser to `http://localhost:9000` and take a look around.\nFor more information, see the [documentation](#Documentation) below.\n\n\n## Installing the development version\n\nTo build and install an (unreleased) development version, you can proceed as follows.\n\n```bash\n$ git clone https://github.com/MatthiasValvekens/certomancer\n$ cd certomancer\n$ python -m build\n$ pip install dist/certomancer*.whl\n```\n\n\n## Demo\n\nThere's a demo on asciinema.org, demonstrating some of the core features of Certomancer. See link below.\n\n[](https://asciinema.org/a/406798)\n\n\n## FOSDEM '22 talk\n\nI gave a lightning talk on testing & mocking PKI services in the [Testing & Automation devroom](https://fosdem.org/2022/schedule/track/testing_and_automation/) at [FOSDEM 2022](https://fosdem.org/2022/). Certomancer was (of course) featured in the presentation.\nIf you want to learn more, or watch the recording, have a look at [the talk page](https://fosdem.org/2022/schedule/event/mockery_of_trust/) for further info. Slides are included as well.\n\n\n## Features\n\n * Certomancer's core APIs are stateless: the same request should always return the same result.\n This property makes it very useful for automated testing.\n * Note that \"the same result\" does not necessarily mean \"byte-for-byte equal\". \n This is because some signing schemes (like ECDSA) involve random nonces. In addition to that,\n time is also a factor in certain cases (but Certomancer does permit time manipulation).\n * Declarative, YAML-based configuration.\n * Minimal input validation, so you can generate deliberately broken certificates if you need to.\n * ``requests-mock`` integration.\n * Attribute certificate support (`0.7.0` and up)\n * Ultra-lightweight WSGI application: the Certomancer Animator serves CRLs, OCSP responses, \n timestamps and more. This component requires Werkzeug, and optionally Jinja2 for the index view.\n Other than a web server and WSGI application server, there are no application dependencies.\n * Plugin framework to support arbitrary certificate / CRL extensions and additional services.\n These plugins are compatible with the WSGI and ``requests-mock`` integrations without\n additional configuration.\n * Certomancer is composable: since the Certomancer Animator is a bare-bones WSGI application,\n you can plug it into whatever web application framework you want with minimal overhead.\n Hence, for particularly complicated scenarios where the plugin API or existing integrations aren't\n sufficient, it is very easy to use Certomancer as a library, or wrap it as a component\n of some other WSGI application.\n * With [pyca/cryptography](https://github.com/pyca/cryptography) installed, Certomancer can also\n output PKCS#12 files if your tests require those.\n * With [python-pkcs11](https://github.com/danni/python-pkcs11) installed, Certomancer can write\n keys and certificates to PKCS#11 tokens as well.\n\n## Non-features\n\nCertomancer is a testing tool for developers that write software to interface with public-key\ninfrastructure. **It is *NOT* intended to be used to manage production PKI deployments.**\nCertomancer is very much garbage-in garbage-out, and happily ignores validation & \nsecurity best practices in favour of allowing you to abuse your codebase in the worst possible ways.\nConsider yourself warned.\n\n\n## Documentation\n\n * [Configuration](docs/config.md)\n * [CLI commands](docs/cli.md)\n * [Plugin API](docs/plugins.md)\n * [Deploying Certomancer](docs/deploy.md)\n",
"bugtrack_url": null,
"license": "MIT",
"summary": "PKI testing tool",
"version": "0.12.0",
"project_urls": {
"Homepage": "https://github.com/MatthiasValvekens/certomancer"
},
"split_keywords": [
"pki",
"testing"
],
"urls": [
{
"comment_text": "",
"digests": {
"blake2b_256": "c9d3ffafdede9ef6a7dfae0dcbeb1d7bfb161f37c809a3aaaa1a493d7b4ebd4f",
"md5": "ea41a95f529c9444e80772378928c052",
"sha256": "80982e8d33a36fd1ada33a83b08f0d92803b81eb00c5cc55f2763966e8a01340"
},
"downloads": -1,
"filename": "certomancer-0.12.0-py3-none-any.whl",
"has_sig": false,
"md5_digest": "ea41a95f529c9444e80772378928c052",
"packagetype": "bdist_wheel",
"python_version": "py3",
"requires_python": null,
"size": 72395,
"upload_time": "2024-03-16T00:02:28",
"upload_time_iso_8601": "2024-03-16T00:02:28.468609Z",
"url": "https://files.pythonhosted.org/packages/c9/d3/ffafdede9ef6a7dfae0dcbeb1d7bfb161f37c809a3aaaa1a493d7b4ebd4f/certomancer-0.12.0-py3-none-any.whl",
"yanked": false,
"yanked_reason": null
},
{
"comment_text": "",
"digests": {
"blake2b_256": "372636b71beac4e0fec410a979b1d6b85e97dd91efb3df000410cc699e790a90",
"md5": "339995886266d7bb4c508b63280c0d57",
"sha256": "84ad40d9a9958c9aa47045e9c24bc7f89d9389cf2e0424b1bd3b3889c9e953e7"
},
"downloads": -1,
"filename": "certomancer-0.12.0.tar.gz",
"has_sig": false,
"md5_digest": "339995886266d7bb4c508b63280c0d57",
"packagetype": "sdist",
"python_version": "source",
"requires_python": null,
"size": 74499,
"upload_time": "2024-03-16T00:02:30",
"upload_time_iso_8601": "2024-03-16T00:02:30.410663Z",
"url": "https://files.pythonhosted.org/packages/37/26/36b71beac4e0fec410a979b1d6b85e97dd91efb3df000410cc699e790a90/certomancer-0.12.0.tar.gz",
"yanked": false,
"yanked_reason": null
}
],
"upload_time": "2024-03-16 00:02:30",
"github": true,
"gitlab": false,
"bitbucket": false,
"codeberg": false,
"github_user": "MatthiasValvekens",
"github_project": "certomancer",
"travis_ci": false,
"coveralls": true,
"github_actions": true,
"lcname": "certomancer"
}
