Validate integrity of Amazon SNS messages
Project description
Validate integrity of Amazon SNS messages.
Verifies cryptographic signature.
Checks signing certificate is hosted on an Amazon-controlled URL.
Requires message be no older than one hour, the maximum lifetime of an SNS message.
Licence: MIT.
Quick start
$ pip install validatesns
import validatesns
# Raise validatesns.ValidationError if message is invalid.
validatesns.validate(decoded_json_message_from_sns)
Gotchas
The validate function downloads the signing certificate on every call. For performance reasons, it’s worth caching certificates - you can do this by passing in a get_certificate function.
This takes a url, and returns the certificate content. Your function could cache to the filesystem, a database, or wherever makes sense.
Contribute
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
validatesns-0.1.1.tar.gz
(3.7 kB
view hashes)