Context Navigation

← Previous Change
Next Change →

Changeset 6844 for TI12-security/trunk/MyProxyClient

Timestamp:

26/04/10 13:50:57 (11 years ago)

Author:

pjkersha

Message:

1.0 release

Location:

TI12-security/trunk/MyProxyClient

Files:

: 6 edited

myproxy/client.py (modified) (4 diffs)
myproxy/test/myProxyClientTest.cfg (modified) (2 diffs)
myproxy/test/proxy.crt (modified) (1 diff)
myproxy/test/proxy.key (modified) (1 diff)
myproxy/test/test_myproxyclient.py (modified) (2 diffs)
setup.py (modified) (2 diffs)

Legend:

: Unmodified
: Added
: Removed

TI12-security/trunk/MyProxyClient/myproxy/client.py

-                      r6840
+                      r6844
         """Store a proxy credential on the server
+        @raise MyProxyClientError: no client certificate and private key set
+        Unfortunately this method is not implemented as it requires the creation
+        of a proxy certificate by the client but PyOpenSSL doesn't currently
+        support the required proxyCertInfo X.509 certificate extension
+        @raise NotImplementedError: see above
         @type username: string
 …
         @type passphrase: string
         @param passphrase: pass-phrase for new credential.  This will be used
+        by the server to authenticate later requests.
+        by the server to authenticate later requests.  IT must be at least
+characters.  The server may impose other restrictions too depending
+        on its configuration.
         @type certFile: string
         @param certFile: user's X.509 proxy certificate in PEM format
 …
         @type sslCertFile: string
         @param sslCertFile: certificate used for client authentication with
+        the MyProxy server SSL connection.  This ID will be set as the owner
+        of the stored credentials.  Only the owner can later remove
+        credentials with myproxy-destroy or the destroy method.  If not set,
+        this argument defaults to $GLOBUS_LOCATION/etc/hostcert.pem or if this
+        is not set, certFile
+        the MyProxy server SSL connection.  If not set,
+        this argument defaults to $GLOBUS_LOCATION/etc/hostcert.pem
         @type sslKeyFile: string
         @param sslKeyFile: corresponding private key file.  See explanation
 …
         credentials in seconds. defaults to proxyCertMaxLifetime attribute value
         """
+        lifetime = lifetime or self.proxyCertMaxLifetime
+        # Inputs must be string type otherwise server will reject the request
+        if isinstance(username, unicode):
+            username = str(username)
+        if isinstance(passphrase, unicode):
+            passphrase = str(passphrase)
+        globusLoc = os.environ.get('GLOBUS_LOCATION')
+        if not sslCertFile or not sslKeyFile:
+            if globusLoc:
+                sslCertFile = os.path.join(globusLoc,
+                                           *MyProxyClient._hostCertSubDirPath)
+                sslKeyFile = os.path.join(globusLoc,
+                                          *MyProxyClient._hostKeySubDirPath)
+            else:
+                raise MyProxyClientError('No client certificate and private '
+                                         'key set and no $GLOBUS_LOCATION set '
+                                         'in order to retrieve and use a host '
+                                         'certificate and private key')
+        # Set up SSL connection
+        conn = self._initConnection(certFile=sslCertFile,
+                                    keyFile=sslKeyFile,
+                                    keyFilePassphrase=sslKeyFilePassphrase)
+        conn.connect((self.hostname, self.port))
+        # send globus compatibility stuff
+        conn.write('0')
+        # send store command - ensure conversion from unicode before writing
+        cmd = MyProxyClient.PUT_CMD % (username, lifetime)
+        conn.write(str(cmd))
+        # process server response
+        dat = conn.recv(MyProxyClient.SERVER_RESP_BLK_SIZE)
+        respCode, errorTxt = self._deserializeResponse(dat)
+        if respCode:
+            raise MyProxyClientGetError(errorTxt)
+        # Get the certificate request generated by the server
+        certReqDat = conn.recv(MyProxyClient.SERVER_RESP_BLK_SIZE)
+        certReq = crypto.load_certificate_request(crypto.FILETYPE_ASN1,
+                                                  certReqDat)
+        pubKey = certReq.get_pubkey()
+        userKey = crypto.load_privatekey(crypto.FILETYPE_PEM,
+                                         open(userKeyFile).read(),
+                                         'testpassword')
+        userCert = crypto.load_certificate(crypto.FILETYPE_PEM,
+                                           open(userCertFile).read())
+        # Create the proxy certificate
+        proxyCert = crypto.X509()
+        userCertSubject = userCert.get_subject()
+        proxyCert.set_issuer(userCertSubject)
+        proxyCert.set_pubkey(pubKey)
+        proxyCert.set_notBefore('20100421130000Z')
+        proxyCert.set_notAfter('20100421170000Z')
+        proxyCert.set_serial_number(12345)
+        proxyCertSubject = crypto.X509Name(userCertSubject)
+        proxyCertSubject.CN = userCertSubject.CN+'/CN=1234567'
+        proxyCert.set_subject(proxyCertSubject)
+        proxyCert.set_version(3)
+        # Oops not currently supported!
+#        extension = crypto.X509Extension('proxyCertInfo',
+#                                         1,
+#                                         'Path Length Constraint: infinite')
+#        proxyCert.add_extensions([extension])
+        proxyCert.sign(userKey, 'md5')
+        wantRead = conn.want_read()
+        wantWrite = conn.want_write()
+        nCerts = '\002'
+        conn.send(nCerts)
+        conn.send(crypto.dump_certificate(crypto.FILETYPE_ASN1, proxyCert))
+        conn.send(crypto.dump_certificate(crypto.FILETYPE_ASN1, userCert))
+        resp = conn.recv(MyProxyClient.SERVER_RESP_BLK_SIZE)
+        respCode, errorTxt = self._deserializeResponse(resp)
+        if respCode:
+            raise MyProxyClientRetrieveError(errorTxt)
+        raise NotImplementedError('put method is not currently implemented.  '
+                                  'It requires the creation of a proxy '
+                                  'certificate by the client but PyOpenSSL '
+                                  'doesn\'t currently support the required '
+                                  'proxyCertInfo X.509 certificate extension.')
     def info(self,

TI12-security/trunk/MyProxyClient/myproxy/test/myProxyClientTest.cfg

-                      r6840
+                      r6844
 username: testuser
 passphrase: testpassword
+ownerCertFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.crt
+ownerKeyFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.key
 sslCertFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.crt
 sslKeyFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.key
 …
 sslKeyFilePassphrase: testpassword
-[test07Put]
-username: proxytestuser
-passphrase: proxypassword
-userCertFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.crt
-userKeyFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.key
-sslCertFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.crt
-sslKeyFile: $MYPROXYCLIENT_UNITTEST_DIR/testuser.key
-sslKeyFilePassphrase: testpassword

TI12-security/trunk/MyProxyClient/myproxy/test/proxy.crt

-                      r6840
+                      r6844
 -----BEGIN CERTIFICATE-----
 MIIDfTCCAuagAwIBAgIEVu1r4TANBgkqhkiG9w0BAQUFADAlMRAwDgYDVQQKEwdH
 YWJyaWVsMREwDwYDVQQDEwh0ZXN0dXNlcjAeFw0xMDA0MjIxMTI3MjNaFw0xMDA0
 MjMwNTMyMjNaMDoxEDAOBgNVBAoTB0dhYnJpZWwxETAPBgNVBAMTCHRlc3R1c2Vy
 MRMwEQYDVQQDEwoxNDU4NDAwMjI1MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC
 CgKCAgEAocqzpomfIySbinA99pxwS5xcGAIbh9OUoZsxk3BNm4ECImacUdfV3xLF
+g10hjOUVzA7TQJ4avOHhf8xmmGBczQw92u/eMzrHJq398MqHjjCyqhXW9A9aINeR
+gdPRV8ccCLoLJMI8fGdCjr+rWhC8MK6XJa0VtTzy56Yk3tXt1imXyFGJAbkZMz4
+nofmUOVfBv6MVqSB+IL1kVJu3K19DOGMXBEFiJZdSHGER8MOuZeQxfibGAWdLMV9
+i13sz3tAIpjh4ztGFeMjX0s9bvLeAPRMsIM84PdxzUTRNGvZGOuTTn+cA0ZCespY
+FKOewP5mnkCjUM9MOeuQMv6M9wloGoVIGPUvx38Xt0pL4Ku+TD4fVyWLfkN+XnfL
+CXpWl9+SIjEiA3VN/MTgDsLCM4lfoHZohVJEE9K61FKxNP2lLTlh+t6FEzLxcCPD
+b6RMFaGb0pHxWDwp9NXYJuHMzUH21OmckMTzXgGU/tgtm/Q+ssIdGr/h0YpzzWK0
 LMg2oM8Z2YGpHryN7xYXWdxqkI6fv7a7tyW1Dh2460OyyoPY7fB5lDkskAm9eiEw
+raqbN7iGC57gUVaZbsp9Y3xqZThJBDlrwN/KRa0VmHWuxpseeaGm2sE85UNMwYnS
 smnbUbw3SMz8rETgMqHqrtwHkdc3+YJV86xVRGZWDItEclBO8TkCAwEAAaMhMB8w
+MIIDfTCCAuagAwIBAgIEUW9MMjANBgkqhkiG9w0BAQUFADAlMRAwDgYDVQQKEwdH
+YWJyaWVsMREwDwYDVQQDEwh0ZXN0dXNlcjAeFw0xMDA0MjYxMjMxMDhaFw0xMDA0
+MjcwNjM2MDhaMDoxEDAOBgNVBAoTB0dhYnJpZWwxETAPBgNVBAMTCHRlc3R1c2Vy
+MRMwEQYDVQQDEwoxMzY2MjQ4NDk4MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIIC
+CgKCAgEA1dMvYhA9zOrl5vpvokPrxaga38DGSnQ2ceYa22AAwN4nM+Q79DGGr86S
+wR5mCeLzGqz8pkxgdEOzp6Hehy5AJbGT25Ik5mXa6zVqugGkXGDMHAlX6h4Qgs4Q
+Y5fwhCBp9LJGbCcu6MN/CFEkt+ZhBcZWa5L1hSodxGZeEMkj03dDwLmWuL6PG
+kAkvXFct9dKD2mOav1tjO2NqrA4/I9fwoDhjiJhcdSX6Y5nL6fODAh58APVB7Jwb
+qMWA46ArkMaPloeNqy1AjoXsWAEbf++YME0ThJwp/uTYjfp4RBNmzaN6b6aUtMC0
+BV8R12OsR7srOPHdMOChV27J6wbUxukuZj+cUvkdMcqjFOBzeojps6P9e2SYanyl
+ijDi7pt9pdvxLK7NDv86ckzZITzhCUUleaL+sxglAFcBbB3AaeFfKTIDIfBr9nsL
+Ugrhs3ukhznitzNUMU48NCcs4+GiEclE5lVwX8EYdu/Z+yKbgAqee6qMvlpdeCRg
+pBU7763a/7dIU5vXBtaIJBC/p6VILp9XOQLP0vzb3SMiYgBsQtt8tUs4c+45Cspw
+unh2QIK0YhkOf8QqJRNas5sA82ELDe0eA1koYlK9e8tRn2fcOLmHVlfECgSVTp2t
+z2Rpwv/oPuwLFKvZd6OOv6I6+3ppLez8Q5jBHuJkHSZj9Aiw68CAwEAAaMhMB8w
 HQYIKwYBBQUHAQ4BAf8EDjAMMAoGCCsGAQUFBxUBMA0GCSqGSIb3DQEBBQUAA4GB
 AMl7p7tyPuzYHtwRI86UrpuBZydPhaPFH2LFWHWW3mmBLnoWH2dhTLdPpsfn6W4G
+/iCZZGf09zR/VgVZvqAuLZagMTY4hn2GGjbOgfF/+pt+4GUGBoJMyX0tG/ksh3T5
++009F3GkkP/9WwGjM7QCIoaaJbCsT41iw8h+dPwHHNdi
+ADUTL0uU5RUZnmRE8SXpKgHt4TOEEYWH7mHfRG4ptlEjEinioW1p4ihdZKgdSXOC
+vexE2Wp6KLqKg/jMxjj4HhjqLU2COUq0z+8FUF13RHESMUDxZbHnftmjBN7Gzz4d
+JmxM31IAlNUbwK/nZ/9GkhrGnVZMIepZ7YIf5b5zcoUs
 -----END CERTIFICATE-----
 -----BEGIN CERTIFICATE-----

TI12-security/trunk/MyProxyClient/myproxy/test/proxy.key

-                      r6840
+                      r6844
 -----BEGIN RSA PRIVATE KEY-----
 MIIJJwIBAAKCAgEAocqzpomfIySbinA99pxwS5xcGAIbh9OUoZsxk3BNm4ECImac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 UNMwYnSsmnbUbw3SMz8rETgMqHqrtwHkdc3+YJV86xVRGZWDItEclBO8TkCAwEA
 AQKCAgB2aB3gZNnFY3Y98/U1Nbpta6pum6RAXJVrTGQU7lyt0NWaDZSbxSUt09Qf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 qbANYAASUlulVMv8iZA+K+yLDPk5uXwleCBDvmLbmWXKa76KqNXjarVIbBusyI
+tnAt1U30aeBy7QKCAQEAySso/V0ty/vhrxQSPosqmDLjbOvZJDX863jDvWlndlj9
 aZIR0tIVk2hnM+hD0enAjnz1+OmTVAdLCmaK4HNZTVM2eE7pWVUaufLM40b9xotC
+DAiDCNEt2UtAU78+co8yQPg3tBZyoDdVqFgvF/VskODNCNesIipFjOIjZCSewX
+QPGUQ/5mY9kXtkfziOvQO9B4y+6qTJ/9WlFtJbzHWKPr4vILrPG7Re/7NVLKG74G
+I/+xJn8eiE7j2okDB8hhIIe6GwkErvUUnmVW3Sl4lSuSaYlkvLFLL8tmauJHyvPW
+f6yxdeVFCUrRsMSzrbeF6ss7v5inkHN6mYOAr7Yx/QKCAQBs70gI5af5gsuupW3Q
+hntuk+Cthxg4CqH0SI7x9Bfeahig5lncLlie8WI4EpuIGKqtCt2qyzIGpMw7DSlN
+nZ9v0rNjWwMmMJJCOScF8sdpYgITmaDL1GbRbukCCSmaZpKWUsCbBImkSAJ1GTmy
+TSUOAdy79Qg6+ByxUDMrVZM/BN26JOH+CAXaHRVk0xc0IiXjAd0GbhrBaZuu1Ot
+ouLlpb2bcWSLYO2j034n68aCgeVdGlr0yN5Ieq9NHldn5a2NA5P5Nxs+bVPDvnZk
+JLZwfz9LXaRwJOFSqBI8BB/oiIpXGSYxXTdMMD/N26dOiNhfsakA38UZ2gK2EDfY
+aRQFAoIBAHxu4Anoix10DmNXjPl258ABKkADmusVIf8dUiZlfoPsA8Q7gB7hqErn
+aGylK57q7fQKcqG7/m+ExEJJJh2GXKUg9t4V0aPXARBAJp4waNCjTr8QOFBUp
+ToQUAMObpu7OzXHM2eXQTRdYCOG4M8Yg0zoF/p2CXB9AdzEeUt6a1L9tLwLn57m3
+XT15QCDfjIyTJUUvudNv2yz01QjUvpILwys8ARDW7boS+VZAgZercOzvikp/swkp
+kzNoMKGtxrZyfiGe8HCwVDKuCI8Ayf+rVgNF4zP8jr9fl1hh43qcXX/X+GUujgdz
+akVnRqUbshBL6gdXi76ET7+JYh5OGpkCggEACVn9R8R9HU1NCX/Vu+wSmA5QWQ3g
+Jego0/GFYStzaxOE9GjgJF/Mmpdgv/q0xG7YXMVSgQ+2vjpFvfiFeonCBZngS7rS
+S3R5NRWbbMVg0UOBviML8j+tpIWV0mvb/fLtpjfn5kdGuG+zxDYuxYJliha0Jsm2
+M+pkdTkraHjIzjVriH+yi90iTkLc93QQgVDD6ol7lV2n5XEfqoM6sTkUaQyNusD
+iX4wBp02Xxda70nW15G+KPmibl/7IJdNP07BMbdO+tGSYug3R0iX+GOVsnozF6CV
+W91hTP2E/UI4eB20vgJPnAt0n4GmSTX8IGhM5sAhPBEanttf6o5luXH0Q==
+MIIJKQIBAAKCAgEA1dMvYhA9zOrl5vpvokPrxaga38DGSnQ2ceYa22AAwN4nM+Q7
+DGGr86SwR5mCeLzGqz8pkxgdEOzp6Hehy5AJbGT25Ik5mXa6zVqugGkXGDMHAlX
+h4Qgs4Q702Y5fwhCBp9LJGbCcu6MN/CFEkt+ZhBcZWa5L1hSodxGZeEMkj03dDw
+LmWuL6PGkAkvXFct9dKD2mOav1tjO2NqrA4/I9fwoDhjiJhcdSX6Y5nL6fODAh58
+APVB7JwbqMWA46ArkMaPloeNqy1AjoXsWAEbf++YME0ThJwp/uTYjfp4RBNmzaN6
+b6aUtMC0BV8R12OsR7srOPHdMOChV27J6wbUxukuZj+cUvkdMcqjFOBzeojps6P9
+e2SYanylijDi7pt9pdvxLK7NDv86ckzZITzhCUUleaL+sxglAFcBbB3AaeFfKTID
+IfBr9nsLUgrhs3ukhznitzNUMU48NCcs4+GiEclE5lVwX8EYdu/Z+yKbgAqee6qM
+vlpdeCRgpBU7763a/7dIU5vXBtaIJBC/p6VILp9XOQLP0vzb3SMiYgBsQtt8tUs4
+c+45Cspwunh2QIK0YhkOf8QqJRNas5sA82ELDe0eA1koYlK9e8tRn2fcOLmHVlfE
+CgSVTp2t8z2Rpwv/oPuwLFKvZd6OOv6I6+3ppLez8Q5jBHuJkHSZj9Aiw68CAwEA
+AQKCAgBQ0Or9w2m4Q6f1Lv52c/lu0WSm4TOQ/G9/iRrpg1WFj/F9OWw3lWh0ljz9
+ZMHoRrDfijZLnF5wUw5Z82Ip8Z8pH/7kZE4yDpk5gQz/lJNMnwFGL3nc8NQIvF3G
+NKvvcOYDLA/Xgoj4oNmUk13FUQthZNyHU6Yhgjp9cseahpvebZivJcNBpgi51Mq9
+sdsGqaSjXpebOT5JyP6ueZrdwNy4bWtzAx0LiZqYZGxIrN5XZERFzsPLkOcDyNTj
+axKV9fnBVGr81+sBoa7er1tuv6xnJGV/DAKugl+VCWWX8+z0veiDHKCwBmP6FUN1
+LEOQBwocam+hrDiPurcAVs1WWVSd0KqUIzi5105QMtjHo3NniI+sRWm9hxfXjvMq
+Yyh6qBLFYJ+DjAY7lvpKR2Dp2Y7ULQWBRkZgS9jax9CWRu+q+NI7f1qN9gH8VWj
+xAmlqGJVluqoMcA8zG2imDt/BYq3H/LEHgyO4480RDXmwHFpJ9/02tPEPMJ/fOOf
+EXevL1kJ3WiCGibCR/XWMgIIqC1R0TS4xiiATK4T91VUZOr9DwYI1A5CKVKLBR4e
+DsycrHCiXKKj55u6TOEbdgLzWHRcdAJLFYMVlddB3MlqMH5PBx0H4RXjvHxejfpq
+BJO3fNkdJWgVpYIDAeeUXkK1W6CpBmQiAlVdgKYiVZas20f7UQKCAQEA7u+jqR8l
+iVUJVQ/+vXuf2vhgG0SMfMtIHcy1PVeA68bqjJ0uibZdIK9LSK2hz85cIWWimY8f
+WuwIrGJl9LrBEpRf2ISlGd2nSChN3REqKtpuxkZP23oyvfH90Zhhh2InzLuxIAKl
+zFwMyyFN3T1BWUWI1jnj9teAGonttvfUrizi3bqZcCm3cAOMqtM/dR9OqW2tTa92
+qDc9a6iDBQ79xGl6v9g89oqpv/eK8s85NwlA/GKZymcuRLKba1RTM3d4gAyPwFPk
+Q+L0Rrkv0TwE5RXmphBeZXMrVxCOLvls2NtN4brjLcsC3yURAhhxKAqu9hWZAMT
+/Q1HeQ/Xih+m0wKCAQEA5RhzMiBbgpcSTz3w6EEOyg/zbWAqcpZaAaNBgO7WORsx
+EeFMam97dfGej9oXN+PJ/EvU3/sIUOGGwsHGralekHjXbveCYqfcInAJmQ63JBnC
+M+cn/CIwiYa5Uo+zZGF5uE4MlVoUfXfafelTEBQqy3aKapGTdsfCbSW8H7sjYVLc
+r1ypTARTu9fZZksMfjsrAi9OyJBYzfPN+4zZW2eAebOsCxsx3cYwA8kAbQxMDenF
+t1C3dxat4GsdLUW3MKjNdYO5wOhiTLOqhnKZu1/+/FmSIv6hmLOIsb2RsX7gvP+6
+p4Uu20NwdOO9clojcp/kR5TTTAWczOlvHzRJEYWeNQKCAQEAgyxGchNqXRG1NOC6
+HjZfVSxkPrQMWHqVVd7LZSjD2yzyGU41fV8Dk20I7JZ+LgKBa8hLUvhS42yPemvu
+w0M/ub6BO/HeXevk6WVPEd1Zg/s1M17oenqEnujaSpXYfSWy6d/k5sjtUtr6Hw5i
+m+IEHUliTRGtCBfY+Tjdq0Q1m4WC6u2FTSFp1nHsaN/eh6MvYS6YJPz+LG1fJ9p0
+S3Omd4zc2bOSDFulw4DX5GNFauSGq8hJ2+d3bDmNv4ekwa2GFu5OgOzNzb8SKDMW
+f7cOAgG/clzCHUjS/B2ZMWJeQXSFQiWs7SymXov/LbZYTkUMEOI8010pPRRsN5ct
+mNsBwKCAQEAoSvUTx2Ig5T4opr3Es5CM1GJdhdDhZ3U8HYELUrZlw9UNDoGYpLP
+jqhPXvCViRJOFZrbxj97GDuxbO6aca5IAueg2EZ0iieBrRCZD/7URSeCArXK4YzE
+DNylIDpMgIA6+7idDa1z4Nki85Xkg9lMShu5QUPtNJFQbS0w7jnfqCZ9bzmHOR2K
+MwqlvVtrDJtfpIfXqy4x66Jr9V6fw7hLIFOQ47dcG6PEP8V28UDHeLpQCKlWiQeB
+h/KTcjgrqqX29YeYdOiHz2JOw4t4L+RXJP122/u7gAw+TJ0LFI4oWY6nqBcAYe1N
+/k4CB6L2cTufg+RlyoPgTiCjtpY4GYWhSQKCAQAR2EvxnVXaeH6JwvDl7QrV3gOh
+Qt3ye3zgg08z9YEKmrTLLekZOH+RgRiCkirvg+SRjG2bMh6feO8YasiI5wY/kSqs
+kOBcX1M+ldkfAiWeqsHR46m5Kea18+G9O6WPt+hD5wUSXFWiXwj0IghIdH9/8PcZ
+NP+2lOI8rbXa+Hb2nqV+osOR83i8vCAXOmcYFH3hwAhCRxG2H5ejBKDCIAl3SaN/
+FVYMLzSLkc4aJaj6SfJdVDsZSlSNRv8G8aTIhvMRmdwCMLSULRglTrzGkgoyE1EH
+bR7G3Fy+qL/RV9dSuNnrP6hfAg5F1z0hMogB8q7l3Mvqfi5GGZgK5q3bmAtd
 -----END RSA PRIVATE KEY-----

TI12-security/trunk/MyProxyClient/myproxy/test/test_myproxyclient.py

-                      r6840
+                      r6844
         sslKeyFilePassphrase = thisSection.get('sslKeyFilePassphrase')
         if sslKeyFilePassphrase is None:
             sslKeyFilePassphrase = getpass.getpass(prompt="\ntest1Store credential "
                                                      " owner pass-phrase: ")
         certFile = path.expandvars(thisSection['signingCertFilePath'])
         keyFile = path.expandvars(thisSection['signingPriKeyFilePath'])
+            sslKeyFilePassphrase = getpass.getpass(
+                        prompt="\ntest1Store credential owner pass-phrase: ")
+        certFile = path.expandvars(thisSection['ownerCertFile'])
+        keyFile = path.expandvars(thisSection['ownerKeyFile'])
         sslCertFile = path.expandvars(thisSection['sslCertFile'])
         sslKeyFile = path.expandvars(thisSection['sslKeyFile'])
 …
                 self.assert_(subj)
                 print("Trust root certificate retrieved with DN=%s" % subj)
-    def test07Put(self):
-        # Make a new credential on the server and a proxy certificate to it
-        thisSection = self.cfg['test07Put']
-        response = self.clnt.put(
-                     thisSection['username'],
-                     thisSection['passphrase'],
-                     path.expandvars(thisSection['userCertFile']),
-                     path.expandvars(thisSection['userKeyFile']),
-                     sslCertFile=path.expandvars(thisSection['sslCertFile']),
-                     sslKeyFile=path.expandvars(thisSection['sslKeyFile']),
-                     sslKeyFilePassphrase=thisSection['sslKeyFilePassphrase'])

TI12-security/trunk/MyProxyClient/setup.py

-                      r6837
+                      r6844
 setup(
     name =              'MyProxyClient',
     version =           '0.9.1',
+    version =           '1.0.0',
     description =       'MyProxy Client',
+    long_description =  'Pure Python implementation of MyProxy client interface',
+    long_description =  '''Pure Python implementation of MyProxy client '''
+    '''interface.
+    This version replaces M2Crypto with PyOpenSSL as the OpenSSL wrapper.
+    Get trust roots is now added.  A stub for Put has been added but not
+    implemented as unfortunately the PyOpenSSL X.%09 extensions interface does
+    not support the required proxyCertInfo extension required for proxy
+    certificates.
+    ''',
     author =            'Philip Kershaw',
     author_email =      'Philip.Kershaw@stfc.ac.uk',
 …
     },
     classifiers = [
         'Development Status :: 4 - Beta',
+        'Development Status :: 5 - Production/Stable',
         'Environment :: Console',
         'Environment :: Web Environment',

Note: See TracChangeset for help on using the changeset viewer.

Download in other formats: