Open avtobiff opened 2 weeks ago
Hello, thank you for reporting this. I have released a fix in v4.0.1, can you please install and see if it fixes the issue you are facing?
(Your repro is not quite complete because from tests.idp.base import CERTIFICATE
is importing from a private tests
package that is private to your project, but I understand the general idea.)
It is not possible to verify a signed XML payload since signxml 4.0.0. This works in signxml<4.0.0.
Trying to use XMLVerifier produces the following trace:
To reproduce this do the following:
Start a python interpreter and run the following: