{"id":28484904,"url":"https://github.com/guomaimang/signedtrust","last_synced_at":"2026-04-27T16:31:40.463Z","repository":{"id":297779664,"uuid":"992588338","full_name":"guomaimang/SignedTrust","owner":"guomaimang","description":"SignedTrust is an enterprise-grade digital signature verification platform designed to validate PDF document signatures and ensure document integrity. ","archived":false,"fork":false,"pushed_at":"2025-06-25T16:57:27.000Z","size":203,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2025-09-02T14:52:23.440Z","etag":null,"topics":["fastapi","javascript","material-ui","python","react"],"latest_commit_sha":null,"homepage":"https://signedtrust.orchanger.com/","language":"JavaScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"other","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/guomaimang.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2025-05-29T11:55:51.000Z","updated_at":"2025-06-25T16:57:31.000Z","dependencies_parsed_at":"2025-06-07T12:42:18.251Z","dependency_job_id":null,"html_url":"https://github.com/guomaimang/SignedTrust","commit_stats":null,"previous_names":["guomaimang/signedtrust"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/guomaimang/SignedTrust","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/guomaimang%2FSignedTrust","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/guomaimang%2FSignedTrust/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/guomaimang%2FSignedTrust/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/guomaimang%2FSignedTrust/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/guomaimang","download_url":"https://codeload.github.com/guomaimang/SignedTrust/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/guomaimang%2FSignedTrust/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32345802,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-26T23:26:28.701Z","status":"online","status_checked_at":"2026-04-27T02:00:06.769Z","response_time":128,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["fastapi","javascript","material-ui","python","react"],"created_at":"2025-06-07T23:09:19.818Z","updated_at":"2026-04-27T16:31:40.458Z","avatar_url":"https://github.com/guomaimang.png","language":"JavaScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# SignedTrust - Digital Signature Verification Platform\n\n[![Python](https://img.shields.io/badge/python-3.8+-blue.svg)](https://python.org)\n[![React](https://img.shields.io/badge/react-19.1+-61dafb.svg)](https://reactjs.org)\n[![FastAPI](https://img.shields.io/badge/fastapi-0.115+-009688.svg)](https://fastapi.tiangolo.com)\n\n## Overview\n\nSignedTrust is an enterprise-grade digital signature verification platform designed to validate PDF document signatures and ensure document integrity. The platform consists of a modern React frontend and a robust Python FastAPI backend, providing comprehensive signature verification capabilities for both legacy and modern digital signatures.\n\n![1749239329949.png](https://pic.hanjiaming.com.cn/2025/06/07/93eddfed06ddb.png)\n\n## Declaration\n\nThe project was completed by the author during the campus-enterprise cooperation program. \n\n**The campus/company agrees to open-source the code by author, and the copyright and distribution rights belong to the author.**\n\n## Features\n\n### 🔒 Digital Signature Verification\n- **PDF Signature Validation**: Comprehensive verification of embedded PDF signatures\n- **Certificate Trust Chain**: Validation against trusted certificate authorities\n- **Multi-signature Support**: Handle documents with multiple digital signatures\n- **Legacy Compatibility**: Support for SHA-1 and modern cryptographic algorithms\n\n### 🌐 Modern Web Interface\n- **Responsive Design**: Optimized for desktop and mobile devices\n- **Material-UI Components**: Modern, accessible user interface\n- **Real-time Validation**: Instant feedback on signature verification\n- **Detailed Reports**: Comprehensive signature analysis and reporting\n\n### 🛡️ Security Features\n- **Trusted Certificate Lists**: Configurable whitelist of trusted certificates\n- **File Size Limits**: Protection against large file uploads (15MB limit)\n- **Format Validation**: Strict PDF format checking\n- **Error Handling**: Graceful handling of corrupted or invalid files\n\n## Architecture\n\n### Frontend (`signedtrust-frontdesk/`)\n- **Framework**: React 19.1+ with Vite\n- **UI Library**: Material-UI v6 with emotion styling\n- **State Management**: Zustand for lightweight state management\n- **Routing**: React Router DOM for navigation\n- **HTTP Client**: Axios with interceptors\n- **Notifications**: Notistack for user feedback\n- **Date Handling**: date-fns for timestamp formatting\n\n### Backend (`signcheck-py/`)\n- **Framework**: FastAPI for high-performance API\n- **PDF Processing**: PyHanko for PDF signature validation\n- **Certificate Validation**: pyhanko-certvalidator for certificate chain verification\n- **Async Processing**: ThreadPoolExecutor for non-blocking operations\n- **Containerization**: Docker support with optimized Dockerfile\n\n## Getting Started\n\n### Prerequisites\n- **Node.js** 18+ and pnpm (for frontend)\n- **Python** 3.8+ (for backend)\n- **Docker** (optional, for containerized deployment)\n\n### Frontend Setup\n\n1. Navigate to the frontend directory:\n   ```bash\n   cd signedtrust-frontdesk\n   ```\n\n2. Install dependencies:\n   ```bash\n   pnpm install\n   ```\n\n3. Start the development server:\n   ```bash\n   pnpm dev\n   ```\n\n4. Build for production:\n   ```bash\n   pnpm build\n   ```\n\n### Backend Setup\n\n1. Navigate to the backend directory:\n   ```bash\n   cd signcheck-py\n   ```\n\n2. Create a virtual environment:\n   ```bash\n   python -m venv venv\n   source venv/bin/activate  # On Windows: venv\\Scripts\\activate\n   ```\n\n3. Install dependencies:\n   ```bash\n   pip install -r requirements.txt\n   ```\n\n4. Run the development server:\n   ```bash\n   python main.py --port 8000\n   ```\n\n### Docker Deployment\n\nFor production deployment using Docker:\n\n```bash\ncd signcheck-py\ndocker build -t signedtrust-backend .\ndocker run -p 8000:8000 signedtrust-backend\n```\n\n## API Documentation\n\n### Endpoints\n\n#### `GET /`\nReturns API status and information.\n\n#### `POST /verify-signature`\nVerifies PDF document signatures.\n\n**Request**: Multipart form data with PDF file\n**Response**: JSON with signature verification results\n\n```json\n{\n  \"error\": null,\n  \"has_signature\": true,\n  \"signature_count\": 1,\n  \"signatures\": [\n    {\n      \"signature_index\": 0,\n      \"is_trusted_cert\": true,\n      \"signing_cert_subject\": \"Common Name: Orchanger, Organization: Orchanger Co Ltd\",\n      \"valid\": true,\n      \"intact\": true,\n      \"signing_time\": \"2025-06-05T22:09:24+08:00\",\n      \"coverage\": \"SignatureCoverageLevel.ENTIRE_FILE\"\n    }\n  ]\n}\n```\n\n## Verification Criteria\n\n### Signature Validation\nA signature is considered **VALID** when all of the following conditions are met:\n\n1. **Certificate Trustworthiness**: `is_trusted_cert` = true\n2. **Signature Validity**: `valid` = true AND `intact` = true\n3. **Coverage Completeness**: `coverage` = \"ENTIRE_FILE\" or \"ENTIRE_REVISION\"\n\n### Document Validation\nA document is considered **VERIFIED** when:\n- All signatures pass individual validation\n- At least one signature has `coverage` = \"ENTIRE_FILE\"\n- No error conditions are present\n\n## Configuration\n\n### Trusted Certificates\nConfigure trusted certificate SHA256 fingerprints in the backend by providing a file with certificate hashes (one per line).\n\n### File Limits\n- Maximum file size: 15MB\n- Supported format: PDF only\n- Multiple signatures per document supported\n\n## Development\n\n### Code Style\n- **Frontend**: ESLint configuration with React hooks and refresh plugins\n- **Backend**: Python type hints and FastAPI best practices\n- **Documentation**: Comprehensive inline documentation\n\n### Project Structure\n```\nsignedtrust\n├── signedtrust-frontdesk/     # React frontend application\n│   ├── src/                   # Source code\n│   ├── public/                # Static assets\n│   └── dist/                  # Production build\n├── signcheck-py/              # FastAPI backend\n│   ├── main.py                # Application entry point\n│   ├── cert/                  # Certificate storage\n│   └── demo/                  # Demo files\n├── docs/                      # Project documentation\n└── requirements.txt           # Root dependencies\n```\n\n## Contributing\n\n1. Fork the repository\n2. Create a feature branch (`git checkout -b feature/amazing-feature`)\n3. Commit your changes (`git commit -m 'Add amazing feature'`)\n4. Push to the branch (`git push origin feature/amazing-feature`)\n5. Open a Pull Request\n\n## Acknowledgments\n\n- [PyHanko](https://github.com/MatthiasValvekens/pyHanko) - PDF signature validation\n- [Material-UI](https://mui.com/) - React component library\n- [FastAPI](https://fastapi.tiangolo.com/) - Modern Python web framework\n- [Vite](https://vitejs.dev/) - Fast build tool and development server\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fguomaimang%2Fsignedtrust","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fguomaimang%2Fsignedtrust","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fguomaimang%2Fsignedtrust/lists"}