Context Navigation

NDGSecurity

Timestamp:

22/02/10 16:37:10 (11 years ago)

Author:

pjkersha

Message:

Setting up tests for the SAML Authorisation Service.

Location:

TI12-security/trunk/NDGSecurity/python

Files:

r6604	r6605
13	13	<pydev_pathproperty name="org.python.pydev.PROJECT_EXTERNAL_SOURCE_PATH">
14	14	<path>/home/pjkersha/workspace/ndg_security_saml</path>
	15	<path>/home/pjkersha/workspace/AuthKit/trunk</path>
15	16	</pydev_pathproperty>
16	17	</pydev_project>

-                      r6604
+                      r6605
                                          cls.AUTHZ_DECISION_QUERY_IFACE_OPTNAME
+        self.authzDecisionFunc = app_conf.get(
+                                authzDecisionQueryIfaceOptName,
+                                cls.DEFAULT_AUTHZ_DECISION_QUERY_IFACE_KEYNAME)
+        authzDecisionFunc = app_conf.get(authzDecisionQueryIfaceOptName)
+        if authzDecisionFunc is not None:
+            # Use decision function set in config
+            self.authzDecisionFunc = authzDecisionFunc
+        else:
+            # Use default decision function
+            self.authzDecisionFunc = self.createAuthzDecisionFunc()
     @classmethod

-                      r6604
+                      r6605
                     SessionHandlerMiddleware.AUTH_TKT_SET_USER_ENVIRON_KEYNAME]
             setUser(session[SessionHandlerMiddleware.USERNAME_SESSION_KEYNAME])
+            # Also reset the environment variable to prevent AuthKit from
+            # restoring the AX values in the cookie.
+            environ[SessionHandlerMiddleware.USERDATA_ENVIRON_KEYNAME] = ''
         else:
             log.debug("SessionHandlerMiddleware.__call__: REMOTE_USER_DATA "

-                      r6570
+                      r6605
 beaker.session.data_dir = %(here)s/authn/beaker/sessions
+beaker.session.cookie_domain = .localhost
 [filter:AuthenticationFilter]
 …
 # suspected problem with AuthKit setting it when a HTTP Proxy is in place
 authkit.cookie.includeip = False
+#authkit.cookie.params.expires = 2
+authkit.cookie.params.domain = .localhost
 # environ key name for beaker session

-                      r6604
+                      r6605
 beaker.session.cookie_expires = True
+beaker.session.cookie_domain = .localhost
 # Key name for keying into environ dictionary
 environ_key = %(beakerSessionKeyName)s
 …
 # suspected problem with AuthKit setting it when a HTTP Proxy is in place
 cookie.includeip = False
+cookie.params.domain = .localhost
 # SSL Client Certificate based authentication is invoked if the client passed
 …
 authkit.cookie.secret=9wvZObs9anUEhSIAnJNoY2iJq59FfYZr
 authkit.cookie.signoutpath = /logout
+authkit.cookie.params.domain = .localhost
 # Disable inclusion of client IP address from cookie signature due to

r6578	r6605
1	1	#
2		# SSL Client AuthN WSGI Testing environment configuration
	2	# INI file for testing the SAML Authorisation Query interface. It uses a
	3	# test stub for the Authorisation Service rather than
	4	# ndg.security.server.wsgi.authzservice.AuthzServiceMiddleware. See,
	5	# authz-service.ini to compare
3	6	#
4	7	# The %(here)s variable will be replaced with the parent directory of this file

-                      r6578
+                      r6605
         self.assert_(samlResponse.assertions[0].authzDecisionStatements[0
                                             ].decision == DecisionType.PERMIT)
+    def test02(self):
+        pass
+class SOAPAuthzServiceMiddlewareTestCase(
+                                SOAPAuthzDecisionInterfaceMiddlewareTestCase):
+    """Test the actual server side middleware
+    ndg.security.server.wsgi.authzservice.AuthzServiceMiddleware
+    rather than a test stub
+    """
+    CONFIG_FILENAME = 'authz-service.ini'
 if __name__ == "__main__":
     unittest.main()

Note: See TracChangeset for help on using the changeset viewer.