Andrey Kislyuk

Unsure what's going on with your peer's CA, but if you have access to the certificate used to generate the signature, and don't expect it to change, then you could...

Sorry, I don't work with SOAP on a regular basis. This library is usually used in SAML applications. You can help by volunteering time or donating to the development of...

Hi @dflorijn, I'm fine with this approach, you're welcome to submit a PR.

I just committed a fix for the test failure, please try again. You are correct that you will need to add a test case and change the docstring to document...

Yes, you should add new test files that contain multiple signatures, and test selecting each of the signatures and any error conditions you can think of (xpath not resolving to...

@blaggacao the code overall looks good and I would encourage you to finish the PR if you can. The links from @ovnicraft seem sufficient to answer your most recent question....

Thanks for reporting. Although typically only one "envelope" node is signed with all the data contained under it, the XML Signature standard does provide a method to sign multiple nodes...

Yes, I have started to look into supporting ws-security, but I don't think I'll get to it in the next few weeks, so please feel free to take a stab...

You might also want to start thinking about how you're going to securely resolve the key from `wsse:SecurityTokenReference`. One way to do that might be to pass a callable `key_resolver`...

Reference material: https://www.oasis-open.org/committees/download.php/16357/Trust_SecureConversation_Interop.2004-10.doc