Context Navigation

← Previous Changeset
Next Changeset →

Changeset 533

Timestamp:

19/01/06 18:00:16 (15 years ago)

Author:

pjkersha

Message:

AttAuthority?.py: altered authorise method to allow use of AttAuthorityIO.
AuthorisationReq? class - allows XML txt input as set in WS call.

CredWallet?.py: modified to AttAuthority? authorise WS call to use
AttAuthorityIO.AuthorisationReq/AuthorisationResp? class for formatting i/o.

Session.py: WS authorisation method is now reqAuthorisation not
"authorisation".

SessionMgrIO.py: moved XMLMsg into it's own file.

attAuthority_services.py: regenerated using wsdl2py from attAuthority.wsdl.
All methods now have single input and output.

sessionMgr_services.py: WS authorisation method is now reqAuthorisation not
"authorisation".

sessionMgr_services_server.py: added debug atttribute to sessionMgr WS
class.

attAuthority_services_server.py: generated from wsdl2dispatch - allows
server side stubs to be expressed as a class rather than standalone
functions in AttAuthorityServer?.py.

Location:

security/trunk/python/NDG

Files:

: 1 added
: 7 edited

AttAuthority.py (modified) (8 diffs)
CredWallet.py (modified) (8 diffs)
Session.py (modified) (2 diffs)
SessionMgrIO.py (modified) (2 diffs)
attAuthority_services.py (modified) (7 diffs)
attAuthority_services_server.py (added)
sessionMgr_services.py (modified) (4 diffs)
sessionMgr_services_server.py (modified) (12 diffs)

Legend:

: Unmodified
: Added
: Removed

security/trunk/python/NDG/AttAuthority.py

-                      r531
+                      r533
 # X509 Certificate handling
 from NDG.X509 import *
+from X509 import *
 # NDG Attribute Certificate
+from NDG.AttCert import *
+from AttCert import *
+# Format for XML messages passed over WS
+from AttAuthorityIO import *
 …
 #_____________________________________________________________________________
 class AttAuthorityAccessDenied(Exception):
+class AttAuthorityAccessDenied(AttAuthorityError):
     """NDG Attribute Authority - access denied exception.
     Raise from authorise method where no roles are available for the user
     but that the request is otherwise valid.  In all other error cases raise
+    AttAuthorityError"""
+    def __init__(self, msg):
+        self.__msg = msg
+    def __str__(self):
+        return self.__msg
+    AttAuthorityError"""
+    pass
 …
+    #_________________________________________________________________________
     def authorise(self,
                   usrProxyCertFilePath=None,
                   usrProxyCertFileTxt=None,
                   extAttCertFilePath=None,
                   extAttCertFileTxt=None):
+                  reqXMLtxt=None,
+                  proxyCertFilePath=None,
+                  userAttCertFilePath=None,
+                  **reqKeys):
         """Request a new Attribute Certificate for authorisation
         usrProxyCertFilePath|usrProxyCertFileTxt:
+        proxyCertFilePath|proxyCertTxt:
                                 user's proxy certificate use appropriate
 …
                                 text content respectively.
+        extAttCertFilePath|extAttCertFileTxt:
+                                Nb. proxyCertTxt is set via reqKeys
+        userAttCertFilePath|userAttCertTxt:
                                 externally provided attribute certificate
 …
                                 Pass in either the file path or a string
                                 containing the certificate XML content.
+                                Nb. userAttCertTxt is set via reqKeys
                                 """
+        if reqXMLtxt is not None:
+            # Parse XML text into keywords corresponding to the input
+            # parameters
+            if not isinstance(reqXMLtxt, basestring):
+                raise SessionMgrError(\
+                            "XML Authorisation request must be a string")
+            # Parse and decrypt as necessary
+            try:
+                # 1st assume that the request was encrypted
+                reqKeys = AuthorisationReq(encrXMLtxt=reqXMLtxt,
+                                    encrPriKeyFilePath=self.__prop['keyFile'],
+                                    encrPriKeyPwd=self.__prop['keyPPhrase'])
+            except Exception, e:
+                # Error occured decrypting - Trying parsing again, but this
+                # time assuming non-encrypted
+                try:
+                    reqKeys = AuthorisationReq(xmlTxt=reqXMLtxt)
+                except Exception, e:
+                    raise SessionMgrError(\
+                        "Error parsing authorisation request: %s" % e)
         # Read proxy certificate
         try:
             usrProxyCert = X509Cert()
             if usrProxyCertFilePath is not None and \
                isinstance(usrProxyCertFilePath, basestring):
+            if proxyCertFilePath is not None and \
+               isinstance(proxyCertFilePath, basestring):
                 # Proxy Certificate input as a file
                 usrProxyCert.read(usrProxyCertFilePath)
+                usrProxyCert.read(proxyCertFilePath)
+            elif usrProxyCertFileTxt is not None and \
+               isinstance(usrProxyCertFileTxt, basestring):
+            elif reqKeys['proxyCertTxt'] is not None:
                 # Proxy Certificate input as string text
                 usrProxyCert.parse(usrProxyCertFileTxt)
+                usrProxyCert.parse(reqKeys['proxyCertTxt'])
             else:
 …
             extAttCert = AttCert(certFilePathList=self.__prop['caCertFile'])
             if extAttCertFilePath is None:
                 if extAttCertFileTxt is None:
+            if reqKeys['userAttCertTxt'] is None:
+                if userAttCertTxt is None:
                     raise AttAuthorityAccessDenied(\
                     "User \"%s\" is not registered " % attCert['holder'] + \
 …
                     # Parse externally provided certificate
                     try:
                         extAttCert.parse(extAttCertFileTxt)
+                        extAttCert.parse(reqKeys['userAttCertTxt'])
                     except Exception, e:
 …
                 # Read externally provided certificate
                 try:
                     extAttCert.read(extAttCertFilePath)
+                    extAttCert.read(userAttCertFilePath)
                 except Exception, e:

security/trunk/python/NDG/CredWallet.py

-                      r531
+                      r533
 # Temporary store of certificates for use with CredWallet reqAuthorisation()
 import tempfile
+# Keyword formatting/XML message creation for Attribute Authority WS
+from AttAuthorityIO import *
 # Access Attribute Authority's web service using ZSI - allow pass if not loaded
 …
 # no need to import it
 try:
     from NDG.AttAuthority import *
+    from AttAuthority import *
     aaImportError = False
 except:
 …
 # Authentication X.509 Certificate
 from NDG.X509 import *
+from X509 import *
 # Authorisation - attribute certificate
 from NDG.AttCert import *
+from AttCert import *
 …
             except Exception, e:
                 raise CredWalletError(
                 "Error updating wallet with credentials from repository: %s"%\
                     e)
+                "Error updating wallet with credentials from repository: " + \
+                    str(e))
 …
                             "Error parsing Attribute Certificate ID '" + \
                                     cred.id + "' retrieved from the " + \
                                     "Credentials Repository: %s" % e)
+                                    "Credentials Repository: %s" % str(e))
                 except:
                     raise CredWalletError("Error parsing Attribute " + \
 …
                                      tracefile=traceFile)
+                # Format XML request message
+                authorisationReq = AuthorisationReq(\
+                                            proxyCertTxt=self.__proxyCertTxt,
+                                            userAttCertTxt=extAttCertTxt)
                 # Call Attribute Authority's Web service
+                resp=aaSrv.reqAuthorisation(usrProxyCert=self.__proxyCertTxt,
+                                            usrAttCert=extAttCertTxt)
+                resp=aaSrv.reqAuthorisation(authorisationReq=authorisationReq)
             except socket.error, e:
 …
+            # Parse the response
+            authorisationResp = AuthorisationResp(xmlTxt=str(resp))
             # Check the status code returned from the authorisation request
             if resp['statCode'] == 'AccessError':
+            if authorisationResp['statCode'] == authorisationResp.accessError:
                 raise CredWalletError(str(resp['errMsg']))
+            elif resp['statCode'] == 'AccessDenied':
+            elif authorisationResp['statCode'] == \
+                                            authorisationResp.AccessDenied:
                 raise CredWalletAuthorisationDenied(\
                             "Authorisation denied: %s" % str(resp['errMsg']))
+            elif resp['statCode'] == 'AccessGranted':
+                attCertTxt = resp['attCert']
+            elif authorisationResp['statCode'] == \
+                                            authorisationResp.accessGranted:
+                attCertTxt = authorisationResp['attCert']
             else:
 …
                 # Request a new attribute certificate from the Attribute
                 # Authority
+                attCertTxt = aa.authorise(\
+                                    usrProxyCertFileTxt=self.__proxyCertTxt,
+                                    extAttCertFileTxt=extAttCertTxt)
+                attCertTxt = aa.authorise(proxyCertTxt=self.__proxyCertTxt,
+                                          userAttCertTxt=extAttCertTxt)
             except AttAuthorityAccessDenied, e:

security/trunk/python/NDG/Session.py

-                      r531
+                      r533
     #_________________________________________________________________________
     def authorise(self, reqXMLtxt=None, **reqKeys):
+    def reqAuthorisation(self, reqXMLtxt=None, **reqKeys):
         """For given sessID, request authorisation from an Attribute Authority
         given by aaWSDL.  If sucessful, an attribute certificate is
 …
             # and return result to caller
             try:
                 return smSrv.authorisation(authorisationReq=reqText)
+                return smSrv.reqAuthorisation(authorisationReq=reqText)
             except Exception, e:

security/trunk/python/NDG/SessionMgrIO.py

-                      r531
+                      r533
 import re
+# For XML parsing
+import cElementTree as ElementTree
+from XMLSecDoc import *
+from XMLMsg import *
 # For use with AuthorisationResp class
 from AttCert import *
-#_____________________________________________________________________________
-class XMLMsgError(Exception):
-    """Exception handling for NDG WS I/O Message class."""
-    def __init__(self, msg):
-        self.__msg = msg
-    def __str__(self):
-        return self.__msg
-#_____________________________________________________________________________
-class XMLMsg(dict):
-    """Super class for encrypting arguments in SOAP messages for NDG Security
-    Web services"""
-    # Derived classes should specify XML tags and values as keywords and
-    # values in a dictionary
-    xmlTagTmpl = {}
-    def __init__(self,
-                 encrXMLtxt=None,
-                 xmlTxt=None,
-                 encrPubKeyFilePath=None,
-                 encrPriKeyFilePath=None,
-                 encrPriKeyPwd=None,
-                 noEncrypt=False,
-                 xmlVers="1.0",
-                 xmlEncoding="UTF-8",
-                 **xmlTags):
-        """XML for sending/receiving encrypted XML arguments with NDG web
-        services
-        To encrypt message to send:
-            encrXML = XMLMsg(encrPubKeyFilePath=filePath,
-                             [xmlTxt]|[Key1=key1, Key2=key2, ...])
-        For recipient to decrypt:
-            encrXML = XMLMsg(encrPriKeyFilePath=filePath,
-                             encrPriKeyPwd=pwd,
-                             encrXMLtxt=xmlTxt)
-        encrXMLtxt:            string containing encrypted text for
-                               decryption
-        encrPubKeyFilePath:    public key to encrypt message - use when
-                               sending a message only
-        encrPriKeyFilePath:    private key used to decrypt message - use
-                               when receiving a message only
-        encrPriKeyPwd:         password for private key
-        noEncrypt:             When setting up XML to be sent in WS request,
-                               but no encryption is required, set this flag
-                               to True.
-                               (!) In this mode, this class is only of
-                               use in formatting **xmlTags keywords into
-                               XML string text __xmlTxt.
-        xmlVers:               version number in standard XML header
-        xmlEncoding:           encoding type set in XML header
-        **xmlTags:             keywords corresponding to the XML tags to be
-                               encrypted
-        """
-        self.__xmlTags = {}
-        self.__encrXMLtxt = encrXMLtxt
-        self.__xmlTxt = xmlTxt
-        self.__xmlHdr = "<?xml version=\"%s\" encoding=\"%s\"?>" % \
-                        (xmlVers, xmlEncoding)
-        # Allow user credentials to be access like dictionary keys
-        dict.__init__(self)
-        # Initialisation for XML Security class used for encryption
-        try:
-            self.__xmlSecDoc=XMLSecDoc(encrPriKeyFilePath=encrPriKeyFilePath,
-                                       encrPubKeyFilePath=encrPubKeyFilePath)
-        except Exception, e:
-            raise XMLMsgError("Error initialising XML security: %s" % e)
-        # Check mode:
-        # - encrypted XML entered for decryption
-        # or
-        # - XML or XML tags entered as keywords to make XML document for
-        # encryption
-        if encrXMLtxt:
-            # Encrypted text has been input for decryption
-            if not encrPriKeyFilePath:
-                raise XMLMsgError(\
-                    "A private key must be set in order to decrypt the data")
-            try:
-                self.__xmlSecDoc.decrypt(xmlTxt=encrXMLtxt,
-                                         encrPriKeyPwd=encrPriKeyPwd)
-                self.__xmlTxt = str(self.__xmlSecDoc)
-            except Exception, e:
-                raise XMLMsgError("Error decrypting credentials: %s" % e)
-            # Parse elements from decrypted result saving as dictionary
-            # self.__xmlTags
-            self.parseXML()
-        else:
-            # XML text or XML tags input ready for encryption
-            if xmlTxt:
-                # Input XML text set - parse tags into dictionary self.__xmlTags
-                self.parseXML()
-            else:
-                # XML text will be set from tags set as keywords
-                self.updateXML(**xmlTags)
-            if encrPubKeyFilePath:
-                try:
-                    self.__xmlSecDoc.encrypt(xmlTxt=self.__xmlTxt)
-                    self.__encrXMLtxt = str(self.__xmlSecDoc)
-                except Exception, e:
-                    raise XMLMsgError("Error encrypting credentials: %s" % e)
-            elif not noEncrypt:
-                raise XMLMsgError(\
-                    "A public key must be set in order to encrypt the data")
-    def __repr__(self):
-        """Print the XML for user credentials"""
-        return repr(self.__xmlTags)
-    def __str__(self):
-        """Print the XML for user credentials"""
-        return self.__xmlTxt
-    def __call__(self):
-        return self.__encrXMLtxt
-    def __getXMLhdr(self):
-        return self.__xmlHdr
-    xmlHdr = property(fget=__getXMLhdr,
-                      doc="Standard header line for XML document")
-    def __getXMLtxt(self):
-        """Get the user credentials as XML formatted string"""
-        return self.__xmlTxt
-    def __setXMLtxt(self, xmlTxt):
-        """Allow text to be set if class of calling method is XMLMsg
-        derived"""
-        try:
-            # Get previous frame from stack
-            frame = sys._getframe().f_back
-        except Exception, e:
-            raise AttributeError("Error checking calling method")
-        try:
-            # Check the class that the calling method belongs to
-            callerClassName = frame.f_locals['self'].__class__.__name__
-            if callerClassName == self.__class__.__name__:
-                self.__xmlTxt = xmlTxt
-                return
-            else:
-                # Raise KeyError so that execution moves to except block
-                raise KeyError
-        except KeyError:
-            # self variable may not be present
-            AttributeError("Caller must be a method of a %s derived class" % \
-                           self.__class__.__name__)
-    # Read-only property
-    xmlTxt = property(fget=__getXMLtxt,
-                      fset=__setXMLtxt,
-                      doc="XML string text for message")
-    def __getEncrXMLtxt(self):
-        """Get the user credentials as encrypted XML formatted string"""
-        return self.__encrXMLtxt
-    # Read-only property
-    encrXMLtxt = property(fget=__getEncrXMLtxt,
-                          doc="encrypted XML user credentials")
-    def __delitem__(self, key):
-        "keys cannot be removed"
-        raise KeyError('Keys cannot be deleted from ' + \
-                       self.__class__.__name__)
-    def __getitem__(self, key):
-        """Access user credentials as dictionary keys"""
-        # Check input key
-        if self.__xmlTags.has_key(key):
-            # key recognised
-            return self.__xmlTags[key]
-        else:
-            # key not recognised
-            raise KeyError('Key "%s" not recognised for %s' % \
-                           (key, self.__class__.__name__))
-    def __setitem__(self, key, item):
-        """Allows keys to be set methods of *derived* classes only
-        - simulates behaviour like 'protected' data members in C++"""
-        if not key in self.__xmlTags:
-            raise KeyError("Key \"%s\" invalid for %s" % \
-                            (key, self.__class__.__name__))
-        try:
-            # Get previous frame from stack
-            frame = sys._getframe().f_back
-        except Exception, e:
-            raise keyError("Error checking caller")
-        try:
-            # Check the class that the calling method belongs to
-            callerClassName = frame.f_locals['self'].__class__.__name__
-            if callerClassName == self.__class__.__name__:
-                self.__xmlTags[key] = item
-                return
-        except KeyError:
-            # self variable may not be present
-            pass
-        raise KeyError('Keys may only be set by methods of derived classes')
-    # 'in' operator
-    def __contains__(self, key):
-        return key in self.__xmlTags
-    def has_key(self, key):
-        return self.__xmlTags.has_key(key)
-    def clear(self):
-        raise KeyError("Data cannot be cleared from " + \
-                       self.__class__.__name__)
-    def copy(self):
-        import copy
-        return copy.copy(self)
-    def keys(self):
-        return self.__xmlTags.keys()
-    def items(self):
-        return self.__xmlTags.items()
-    def values(self):
-        return self.__xmlTags.values()
-    def update(self, xmlTagsDict=None, **xmlTags):
-        """override dict.update to carry out validation
-        Nb. unlike dict.update, an iterable can't be passed in"""
-        if xmlTagsDict:
-            if not isinstance(xmlTagsDict, dict):
-                raise TypeError("Input must be dict type")
-            # Dictionary input overrides keywords
-            xmlTags = xmlTagsDict
-        if not len(xmlTags):
-            return
-        # Check keys are valid - xmlTagTmpl MUST have been altered from the
-        # default otherwise this test will always fail
-        unknownKeys = [key for key in xmlTags if key not in self.xmlTagTmpl]
-        if unknownKeys:
-            raise KeyError(\
-                "Invalid keywords set for update: \"%s\"" % \
-                '", "'.join(unknownKeys))
-        # Copy keywords - but only those that are NOT None
-        self.__xmlTags.update(\
-                dict([(k, v) for k, v in xmlTags.items() if v is not None]))
-    def updateXML(self, **xmlTags):
-        """Build XML message string from keywords corresponding to
-        tags input
-        Override in a derived class if required"""
-        # Update dictionary
-        self.update(**xmlTags)
-        # Create XML formatted string ready for encryption
-        try:
-            rootNode = ElementTree.Element(self.__class__.__name__)
-            rootNode.tail = os.linesep
-            for tag in self.__xmlTags:
-                # ElementTree tostring doesn't like bool types
-                elem = ElementTree.SubElement(rootNode, tag)
-                elem.tail = os.linesep
-                if isinstance(self.__xmlTags[tag], bool):
-                    elem.text = "%d" % self.__xmlTags[tag]
-                else:
-                    elem.text = self.__xmlTags[tag]
-            self.__xmlTxt = self.__xmlHdr + os.linesep + \
-                                                ElementTree.tostring(rootNode)
-        except Exception, e:
-            raise XMLMsgError("Creating XML: %s" % e)
-    def parseXML(self, rtnRootElem=False):
-        """Parse unencrypted XML in self.__xmlTxt
-        Assumes single level of nesting of XML tags - override in a derived
-        class if required
-        rtnRootElem:    set to True to return the root element - useful for
-                        derived classes to be able to access"""
-        # Convert strings containing digits to integer type
-        intCast = lambda str: int(str.isdigit()) and int(str) or str
-        try:
-            rootElem = ElementTree.XML(self.__xmlTxt)
-            xmlTags = dict([(elem.tag, intCast(elem.text)) \
-                            for elem in rootElem])
-            self.__xmlTags = xmlTags
-        except Exception, e:
-            raise XMLMsgError("Error parsing XML text: %s" % e)
-        return rootElem
 #_____________________________________________________________________________
 …
             raise AuthorisationRespError(\
                 "Error parsing Ext. Attribute Certificate List: %s" % e)
 #_____________________________________________________________________________

security/trunk/python/NDG/attAuthority_services.py

-                      r474
+                      r533
     def getTrustedHostInfo(self, request):
         """
         @param: request to getTrustedHostInfoRequest::
           _usrRole: str
+        @param: request to trustedHostInfoRequest::
+          _trustedHostInfoReq: str
+        @return: response from getTrustedHostInfoResponse::
+          _errMsg: str
+          _trustedHostInfo: Any
+        @return: response from trustedHostInfoResponse::
+          _trustedHostInfoResp: str
         """
         if not isinstance(request, getTrustedHostInfoRequest) and\
             not issubclass(getTrustedHostInfoRequest, request.__class__):
+        if not isinstance(request, trustedHostInfoRequest) and\
+            not issubclass(trustedHostInfoRequest, request.__class__):
             raise TypeError, "%s incorrect request type" %(request.__class__)
         kw = {}
         response = self.binding.Send(None, None, request, soapaction="urn:attAuthority#getTrustedHostInfo", **kw)
         response = self.binding.Receive(getTrustedHostInfoResponseWrapper())
         if not isinstance(response, getTrustedHostInfoResponse) and\
             not issubclass(getTrustedHostInfoResponse, response.__class__):
+        response = self.binding.Receive(trustedHostInfoResponseWrapper())
+        if not isinstance(response, trustedHostInfoResponse) and\
+            not issubclass(trustedHostInfoResponse, response.__class__):
             raise TypeError, "%s incorrect response type" %(response.__class__)
         return response
 …
     def reqAuthorisation(self, request):
         """
+        @param: request to reqAuthorisationRequest::
+          _usrAttCert: str
+          _usrProxyCert: str
+        @param: request to authorisationRequest::
+          _authorisationReq: str
+        @return: response from reqAuthorisationResponse::
+          _attCert: str
+          _errMsg: str
+          _statCode: str
+        @return: response from authorisationResponse::
+          _authorisationResp: str
         """
         if not isinstance(request, reqAuthorisationRequest) and\
             not issubclass(reqAuthorisationRequest, request.__class__):
+        if not isinstance(request, authorisationRequest) and\
+            not issubclass(authorisationRequest, request.__class__):
             raise TypeError, "%s incorrect request type" %(request.__class__)
         kw = {}
         response = self.binding.Send(None, None, request, soapaction="urn:attAuthority#reqAuthorisation", **kw)
         response = self.binding.Receive(reqAuthorisationResponseWrapper())
         if not isinstance(response, reqAuthorisationResponse) and\
             not issubclass(reqAuthorisationResponse, response.__class__):
+        response = self.binding.Receive(authorisationResponseWrapper())
+        if not isinstance(response, authorisationResponse) and\
+            not issubclass(authorisationResponse, response.__class__):
             raise TypeError, "%s incorrect response type" %(response.__class__)
         return response
 …
 class getTrustedHostInfoRequest (ZSI.TCcompound.Struct):
+class authorisationRequest (ZSI.TCcompound.Struct):
     def __init__(self, name=None, ns=None):
         self._usrRole = None
+        self._authorisationReq = None
         oname = None
 …
             if ns:
                 oname += ' xmlns="%s"' % ns
             ZSI.TC.Struct.__init__(self, getTrustedHostInfoRequest, [ZSI.TC.String(pname="usrRole",aname="_usrRole",optional=1),], pname=name, aname="_%s" % name, oname=oname )
+            ZSI.TC.Struct.__init__(self, authorisationRequest, [ZSI.TC.String(pname="authorisationReq",aname="_authorisationReq",optional=1),], pname=name, aname="_%s" % name, oname=oname )
 class getTrustedHostInfoRequestWrapper(getTrustedHostInfoRequest):
+class authorisationRequestWrapper(authorisationRequest):
     """wrapper for rpc:encoded message"""
     typecode = getTrustedHostInfoRequest(name='getTrustedHostInfo', ns='urn:attAuthority')
+    typecode = authorisationRequest(name='reqAuthorisation', ns='urn:attAuthority')
     def __init__( self, name=None, ns=None, **kw ):
         getTrustedHostInfoRequest.__init__( self, name='getTrustedHostInfo', ns='urn:attAuthority' )
+        authorisationRequest.__init__( self, name='reqAuthorisation', ns='urn:attAuthority' )
 class getTrustedHostInfoResponse (ZSI.TCcompound.Struct):
+class authorisationResponse (ZSI.TCcompound.Struct):
     def __init__(self, name=None, ns=None):
+        self._trustedHostInfo = None
+        self._errMsg = None
+        self._authorisationResp = None
         oname = None
 …
             if ns:
                 oname += ' xmlns="%s"' % ns
             ZSI.TC.Struct.__init__(self, getTrustedHostInfoResponse, [ZSI.TC.Any(pname="trustedHostInfo",aname="_trustedHostInfo",optional=1),ZSI.TC.String(pname="errMsg",aname="_errMsg",optional=1),], pname=name, aname="_%s" % name, oname=oname )
+            ZSI.TC.Struct.__init__(self, authorisationResponse, [ZSI.TC.String(pname="authorisationResp",aname="_authorisationResp",optional=1),], pname=name, aname="_%s" % name, oname=oname )
 class getTrustedHostInfoResponseWrapper(getTrustedHostInfoResponse):
+class authorisationResponseWrapper(authorisationResponse):
     """wrapper for rpc:encoded message"""
     typecode = getTrustedHostInfoResponse(name='getTrustedHostInfoResponse', ns='urn:attAuthority')
+    typecode = authorisationResponse(name='reqAuthorisationResponse', ns='urn:attAuthority')
     def __init__( self, name=None, ns=None, **kw ):
         getTrustedHostInfoResponse.__init__( self, name='getTrustedHostInfoResponse', ns='urn:attAuthority' )
+        authorisationResponse.__init__( self, name='reqAuthorisationResponse', ns='urn:attAuthority' )
 class reqAuthorisationRequest (ZSI.TCcompound.Struct):
+class trustedHostInfoRequest (ZSI.TCcompound.Struct):
     def __init__(self, name=None, ns=None):
+        self._usrProxyCert = None
+        self._usrAttCert = None
+        self._trustedHostInfoReq = None
         oname = None
 …
             if ns:
                 oname += ' xmlns="%s"' % ns
             ZSI.TC.Struct.__init__(self, reqAuthorisationRequest, [ZSI.TC.String(pname="usrProxyCert",aname="_usrProxyCert",optional=1),ZSI.TC.String(pname="usrAttCert",aname="_usrAttCert",optional=1),], pname=name, aname="_%s" % name, oname=oname )
+            ZSI.TC.Struct.__init__(self, trustedHostInfoRequest, [ZSI.TC.String(pname="trustedHostInfoReq",aname="_trustedHostInfoReq",optional=1),], pname=name, aname="_%s" % name, oname=oname )
 class reqAuthorisationRequestWrapper(reqAuthorisationRequest):
+class trustedHostInfoRequestWrapper(trustedHostInfoRequest):
     """wrapper for rpc:encoded message"""
     typecode = reqAuthorisationRequest(name='reqAuthorisation', ns='urn:attAuthority')
+    typecode = trustedHostInfoRequest(name='getTrustedHostInfo', ns='urn:attAuthority')
     def __init__( self, name=None, ns=None, **kw ):
         reqAuthorisationRequest.__init__( self, name='reqAuthorisation', ns='urn:attAuthority' )
+        trustedHostInfoRequest.__init__( self, name='getTrustedHostInfo', ns='urn:attAuthority' )
 class reqAuthorisationResponse (ZSI.TCcompound.Struct):
+class trustedHostInfoResponse (ZSI.TCcompound.Struct):
     def __init__(self, name=None, ns=None):
+        self._attCert = None
+        self._statCode = None
+        self._errMsg = None
+        self._trustedHostInfoResp = None
         oname = None
 …
             if ns:
                 oname += ' xmlns="%s"' % ns
             ZSI.TC.Struct.__init__(self, reqAuthorisationResponse, [ZSI.TC.String(pname="attCert",aname="_attCert",optional=1),ZSI.TC.String(pname="statCode",aname="_statCode",optional=1),ZSI.TC.String(pname="errMsg",aname="_errMsg",optional=1),], pname=name, aname="_%s" % name, oname=oname )
+            ZSI.TC.Struct.__init__(self, trustedHostInfoResponse, [ZSI.TC.String(pname="trustedHostInfoResp",aname="_trustedHostInfoResp",optional=1),], pname=name, aname="_%s" % name, oname=oname )
 class reqAuthorisationResponseWrapper(reqAuthorisationResponse):
+class trustedHostInfoResponseWrapper(trustedHostInfoResponse):
     """wrapper for rpc:encoded message"""
     typecode = reqAuthorisationResponse(name='reqAuthorisationResponse', ns='urn:attAuthority')
+    typecode = trustedHostInfoResponse(name='getTrustedHostInfoResponse', ns='urn:attAuthority')
     def __init__( self, name=None, ns=None, **kw ):
         reqAuthorisationResponse.__init__( self, name='reqAuthorisationResponse', ns='urn:attAuthority' )
+        trustedHostInfoResponse.__init__( self, name='getTrustedHostInfoResponse', ns='urn:attAuthority' )

security/trunk/python/NDG/sessionMgr_services.py

-                      r530
+                      r533
-    def authorisation(self, request):
-        """
-        @param: request to authorisationRequest::
-          _authorisationReq: str
-        @return: response from authorisationResponse::
-          _authorisationResp: str
-        """
-        if not isinstance(request, authorisationRequest) and\
-            not issubclass(authorisationRequest, request.__class__):
-            raise TypeError, "%s incorrect request type" %(request.__class__)
-        kw = {}
-        response = self.binding.Send(None, None, request, soapaction="urn:sessionMgr#authorisation", **kw)
-        response = self.binding.Receive(authorisationResponseWrapper())
-        if not isinstance(response, authorisationResponse) and\
-            not issubclass(authorisationResponse, response.__class__):
-            raise TypeError, "%s incorrect response type" %(response.__class__)
-        return response
     def connect(self, request):
         """
 …
+    def reqAuthorisation(self, request):
+        """
+        @param: request to authorisationRequest::
+          _authorisationReq: str
+        @return: response from authorisationResponse::
+          _authorisationResp: str
+        """
+        if not isinstance(request, authorisationRequest) and\
+            not issubclass(authorisationRequest, request.__class__):
+            raise TypeError, "%s incorrect request type" %(request.__class__)
+        kw = {}
+        response = self.binding.Send(None, None, request, soapaction="urn:sessionMgr#reqAuthorisation", **kw)
+        response = self.binding.Receive(authorisationResponseWrapper())
+        if not isinstance(response, authorisationResponse) and\
+            not issubclass(authorisationResponse, response.__class__):
+            raise TypeError, "%s incorrect response type" %(response.__class__)
+        return response
 class addUserRequest (ZSI.TCcompound.Struct):
 …
     """wrapper for rpc:encoded message"""
     typecode = authorisationRequest(name='authorisation', ns='urn:sessionMgr')
     def __init__( self, name=None, ns=None, **kw ):
         authorisationRequest.__init__( self, name='authorisation', ns='urn:sessionMgr' )
+    typecode = authorisationRequest(name='reqAuthorisation', ns='urn:sessionMgr')
+    def __init__( self, name=None, ns=None, **kw ):
+        authorisationRequest.__init__( self, name='reqAuthorisation', ns='urn:sessionMgr' )
 class authorisationResponse (ZSI.TCcompound.Struct):
 …
     """wrapper for rpc:encoded message"""
     typecode = authorisationResponse(name='authorisationResponse', ns='urn:sessionMgr')
     def __init__( self, name=None, ns=None, **kw ):
         authorisationResponse.__init__( self, name='authorisationResponse', ns='urn:sessionMgr' )
+    typecode = authorisationResponse(name='reqAuthorisationResponse', ns='urn:sessionMgr')
+    def __init__( self, name=None, ns=None, **kw ):
+        authorisationResponse.__init__( self, name='reqAuthorisationResponse', ns='urn:sessionMgr' )
 class connectRequest (ZSI.TCcompound.Struct):

security/trunk/python/NDG/sessionMgr_services_server.py

-                      r531
+                      r533
+"""NDG Session Manager Web service interface.
+"""NDG Session Manager Web service server side interface.  Generated and
+adapted from:
+wsdl2dispatch -f sessionMgr.wsdl
 NERC Data Grid Project
 …
 cvsID = '$Id$'
 from ZSI.ServiceContainer import ServiceSOAPBinding
 …
 from sessionMgr_services import *
+from SessionMgr import *
 # Create custom XML formatted error response where needed
 from NDG.SessionMgrIO import *
+from SessionMgrIO import *
-debug = True#False
 class sessionMgr(ServiceSOAPBinding):
 …
         'urn:sessionMgr#addUser': 'soap_addUser',
         'urn:sessionMgr#connect': 'soap_connect',
         'urn:sessionMgr#authorisation': 'soap_authorisation',
+        'urn:sessionMgr#reqAuthorisation': 'soap_reqAuthorisation',
+        }
+    def __init__(self, sessionMgr, post='/sessionMgr.wsdl', **kw):
+    def __init__(self, srv, debug=False, post='/sessionMgr.wsdl', **kw):
         ServiceSOAPBinding.__init__(self, post)
         # Link WS to underlying session manager class instance
+        self.__sessionMgr = sessionMgr
+        if not isinstance(srv, SessionMgr):
+            SessionMgrError("Expecting SessionMgr type")
+        self.__srv = srv
+        self.__debug = debug
 …
         """SOAP interface to NDG Session Manager WS addUser."""
         if debug:
+        if self.__debug:
             import pdb
             pdb.set_trace()
 …
         # input vals in request object
         reqArgs = ps.Parse(addUserRequestWrapper)
         encrReqTxt = str(reqArgs._addUserReq)
+        reqTxt = str(reqArgs._addUserReq)
         # assign return values to response object
 …
         # Request a connection from the Session Manager
         try:
             resp._addUserResp = self.__sessionMgr.addUser(\
                                             encrAddUserReqTxt=encrReqTxt)
+            resp._addUserResp = self.__srv.addUser(encrAddUserReqTxt=reqTxt)
         except Exception, e:
             resp._addUserResp = str(AddUserResp(errMsg=str(e)))
 …
         """SOAP interface to NDG Session Manager WS connect."""
         if debug:
+        if self.__debug:
             import pdb
             pdb.set_trace()
 …
         # input vals in request object
         reqArgs = ps.Parse(connectRequestWrapper)
         encrReqTxt = str(reqArgs._connectReq)
+        reqTxt = str(reqArgs._connectReq)
         # assign return values to response object
 …
         # Request a connection from the Session Manager
         try:
             resp._connectResp = self.__sessionMgr.connect(\
                                             encrConnectReqTxt=encrReqTxt)
+            resp._connectResp = self.__srv.connect(encrConnectReqTxt=reqTxt)
         except Exception, e:
             resp._connectResp = str(ConnectResp(errMsg=str(e)))
 …
     #_________________________________________________________________________
     def soap_authorisation(self, ps):
+    def soap_reqAuthorisation(self, ps):
         if debug:
+        if self.__debug:
             import pdb
             pdb.set_trace()
 …
         # Make an authorisation request via the session manager
         try:
             authResp = self.__sessionMgr.authorise(reqXMLtxt=reqTxt)
+            authResp = self.__srv.reqAuthorisation(reqXMLtxt=reqTxt)
         except Exception, e:

Note: See TracChangeset for help on using the changeset viewer.