Open michal-kowalczyk opened 3 years ago
Doesn't setting signature_algorithm to the ecdsa one make the rsa keys not work? We should probably first know what kind of certificate we're dealing with before setting it. Any ideas?
Correct, you can only have either ec or rsa, you cannot have both.
A quick fix might be adding a new parameter to the server: key_type
- 'ec'/'rsa'.
If we don't like extending the interface, we could reinitialize XMLSigner
with 'ecdsa-sha256' if that throws.
The best would be a proper fix with checking if the key is RSA or EC although I haven't found anything suitable for python.
When passing an EC
key
andcert
toOpenADRServer
, it crashes after receiving the first message from the VEN:The reason for that is the fact that they set default value for
signature_algorithm
torsa-sha256
in the method__init__
ofXMLSigner
.A simple workaround is applying the following diff:
Here's is the key that I use:
and the certificate: