Drupal is a registered trademark of Dries Buytaert
drupal 11.3.7 Update released for Drupal core (11.3.7)! drupal 11.2.11 Update released for Drupal core (11.2.11)! drupal 10.6.7 Update released for Drupal core (10.6.7)! drupal 10.5.9 Update released for Drupal core (10.5.9)! cms 2.1.1 Update released for Drupal core (2.1.1)! drupal 11.3.6 Update released for Drupal core (11.3.6)! drupal 10.6.6 Update released for Drupal core (10.6.6)! cms 2.1.0 Update released for Drupal core (2.1.0)! bootstrap 8.x-3.40 Minor update available for theme bootstrap (8.x-3.40). menu_link_attributes 8.x-1.7 Minor update available for module menu_link_attributes (8.x-1.7). eca 3.1.1 Minor update available for module eca (3.1.1). layout_paragraphs 2.1.3 Minor update available for module layout_paragraphs (2.1.3). ai 1.3.3 Minor update available for module ai (1.3.3). ai 1.2.14 Minor update available for module ai (1.2.14). node_revision_delete 2.0.3 Minor update available for module node_revision_delete (2.0.3). moderated_content_bulk_publish 2.0.52 Minor update available for module moderated_content_bulk_publish (2.0.52). klaro 3.0.10 Minor update available for module klaro (3.0.10). klaro 3.0.9 Minor update available for module klaro (3.0.9). layout_paragraphs 2.1.2 Minor update available for module layout_paragraphs (2.1.2). geofield_map 11.1.8 Minor update available for module geofield_map (11.1.8).
← All modules

c2pa_sign

1 sites Security covered
View on drupal.org

Signing module to work in conjunction with the c2patool command line utility to sign media files.

Content Credentials is a concept created by the Coalition for Content Provenance and Authenticity (C2PA) to help authenticate media assets.

Features

  • Signing of media files upon upload (integrated with the file widget).
  • Signing of media files upon content publication.
  • Signing of image derivatives (image styles) upon creation.

Currently c2patool doesn't support using outside signers (KMS or HSM services) the tool will only sign/embed manifest data if the cert/key are available to the tool. When the tool gains the ability to package a manifest and output the data for a third party tool to sign, then incorporate that manifest that feature will be added.

Post-Installation

Go to /admin/config/media/c2pa_sign and enter in the location of cert/key pair compatible with the tool and the location of the c2patool command line utility.

Additional Requirements

Certificate/Key pair for signing and the tool - see "PostInstallation"

Recommended modules/libraries

  • The Content Authenticity Initiative has created a reference Drupal module which provides an image formatter to show provenance of images, if available.
  • C2PA Sign AWS KMS allows you to use Amazon's AWS Key Management Service (KMS) to sign manifests.

Similar projects

None of which I am aware.

Supporting this Module

Contribute ideas, bugs, patches.

Community Documentation

Not yet.

Activity

Total releases
3
First release
Jun 2025
Latest release
2 months ago
Release cadence
127 days
Stability
100% stable

Release Timeline

Releases

Version Type Release date
1.4.10 Stable Feb 17, 2026
1.4.7 Stable Dec 31, 2025
1.4.6 Stable Jun 9, 2025