JSignify is a very basic Java library that supports verifying (OpenBSD) Signify signatures. JSignify uses Google's Tink for the verification of the Ed25519 signatures.
Verifying the signature of a message (using Base64 strings instead of files).
String publicKey = "RWRm/JNSNUb77CmSMXBAA5Owr4XzPbRO/PKDXXLIUfOgFDd/F8hT8p5t";
String signature = "RWRm/JNSNUb77AmgjFuNCA6+3wwVotARqp2BqrG+ZoqFaK2PB8pW/Acpo660s+DmF1pxJOTB8uXp6b1S1N+sZLZwx8G6tnxSIg0=";
byte[] message = "testmessage\n".getBytes(UTF_8);
try {
SignifyVerifier verifier = new SignifyVerifier(publicKey);
verifier.verify(signature, message);
} catch (VerificationFailedException e) {
// Handle signature verification failed...
} catch (Exception e) {
// Handle other exceptions...
}- verifying a Signify signature of a message against a public key (file based)
- verifying a Signify signature of a message against a public key (with Base64 signatures and public keys)
- signing of messages
- creating key pairs
- verifying a GZIP embedded Signify signature against a public key
- verifying a SHA-256 checksum list and the corresponding files
To build JSignify locally you need at least a Java 11 JDK (e.g. OpenJDK). For development IntelliJ IDEA Community Edition can be used.
Build with:
./gradlew clean build
Licensed under Apache License Version 2.0