Context Navigation

← Previous Changeset
Next Changeset →

Changeset 1227

Timestamp:

21/06/06 13:57:58 (13 years ago)

Author:

pjkersha

Message:

Tests/SecurityClientTest?.py: tests with local WSDL file with alternate port number

ndgSetup.sh: added NDG_AA_PORT_NUM and NDG_SM_PORT_NUM environment variable settings. These can be set so that
the Attribute Authority and Session Manager run on alternative port numbers to the defaults.

share/ndgAttAuthority: SysV bash init script for running the Attribute Authority. share/ is a general directory for
extra files like this.

bin/AttAuthorityServer.py and bin/SessionMgrServer.py: modified so that they can be invoked to fork a separate child
process for the respective web service. This makes it easier to incorporate into SysV init scripts.

Location:

TI12-security/trunk/python

Files:

: 2 added
: 4 edited

Tests/SecurityClientTest.py (modified) (3 diffs)
bin/AttAuthorityServer.py (modified) (3 diffs)
bin/SessionMgrServer.py (modified) (4 diffs)
ndgSetup.sh (modified) (2 diffs)
share (added)
share/ndgAttAuthority (added)

Legend:

: Unmodified
: Added
: Removed

TI12-security/trunk/python/Tests/SecurityClientTest.py

-                      r1215
+                      r1227
         try:
             # Session Manager WSDL
+            self.smWSDL = 'http://glue.badc.rl.ac.uk/sessionMgr.wsdl'
+            self.smWSDL = './sessionMgr.wsdl'
+#            self.smWSDL = 'http://glue.badc.rl.ac.uk/sessionMgr.wsdl'
 #            self.smWSDL = 'http://gabriel.bnsc.rl.ac.uk/sessionMgr.wsdl'
 …
             # Attribute Authority client tests
 #            self.aaWSDL = '/home/pjkersha/Development/security/python/Tests/attAuthority.wsdl'
             self.aaWSDL = 'http://glue.badc.rl.ac.uk/attAuthority.wsdl'
+            self.aaWSDL = '/home/pjkersha/Development/security/python/Tests/attAuthority.wsdl'
+#            self.aaWSDL = 'http://glue.badc.rl.ac.uk/attAuthority.wsdl'
 #            self.aaWSDL = 'http://gabriel.bnsc.rl.ac.uk/attAuthority.wsdl'
             aaPubKeyFilePath = None
 …
             self.sessCookie = None
             self.proxyCert = None
+            self.newUserName = 'lawrence'
+#            self.userName = 'gabriel'
+            self.userName = 'lawrence'
+#            self.newUserName = 'lawrence'
+            self.newUserName = 'gabriel'
+            self.userName = 'gabriel'
+#            self.userName = 'lawrence'
 #            self.trustedHostRequiredRole = 'acsoe'
+            self.trustedHostRequiredRole = 'coapec'
+#            self.trustedHostRequiredRole = 'coapec'
+            self.trustedHostRequiredRole = 'academic'
         except Exception, e:

TI12-security/trunk/python/bin/AttAuthorityServer.py

-                      r1176
+                      r1227
 import sys
 import os
 import getopt
+import optparse
 # Web service interface
 …
+def usage():
+    """Describes how to call AttAuthorityServer from the command line"""
+    print "usage: %s " % sys.argv[0].split(os.sep)[-1]
+    print """
+[-h | --help]
+    print usage summary
+[-f <properties file path> | --file=<properties file path>]
+[-p <port #> | --port=<port #>
+    specify a port number to override the default
+[-d | --debug]
+    set to stop in debugger on receipt of WS request
+"""
+#_____________________________________________________________________________
+if __name__ == '__main__':
+    try:
+        opts, args = getopt.getopt(sys.argv[1:],
+                                   "hf:p:d",
+                                   ["help", "file=", "port=", "debug"])
+    except getopt.GetoptError:
+        usage()
+        sys.exit(1)
+    propFilePath = None
+    # Port may be set from an environment variable.  Note that this will be
+    # overridden if the port command line argument is set
+    if 'NDG_AA_PORT_NUM' in os.environ:
+        port = int(os.environ['NDG_AA_PORT_NUM'])
+    else:
+        # Default port number
+        port = 5000
+    debug = False
+    for opt, arg in opts:
+        if opt in ("-h", "--help"):
+            usage()
+            sys.exit(0)
+        elif opt in ("-d", "--debug"):
+            debug = True
+        elif opt in ("-f", "--file"):
+            propFilePath = arg
+        elif opt in ("-p", "--port"):
+            port = int(arg)
+    if propFilePath is None:
+        # Check in installation area otherwise assume local directory
+        if 'NDG_DIR' in os.environ:
+            propFileDir = os.path.join(os.environ['NDG_DIR'], "conf")
+        else:
+            propFileDir = "."
+        propFilePath = os.path.join(propFileDir, 'attAuthorityProperties.xml')
+    # Create server instance at start up
+    try:
+        aa = AttAuthority(propFilePath)
+    except Exception, e:
+        sys.stderr.write("Initialising Attribute Authority: %s\n" % e)
+        sys.exit(1)
+#_____________________________________________________________________________
+def runInForegnd():
+    """Run Attribute Authority in the same process as this script"""
     print "Attribute Authority Server listening..."
     try:
          AsServer(port=port,
                   services=[attAuthority(aa, debug=debug)],
+         AsServer(port=options.port,
+                  services=(attAuthority(aa, debug=options.debug),),
                   RequestHandlerClass=attAuthoritySOAPRequestHandler)
 …
         sys.stderr.write("Attribute Authority Server: %s\n" % e)
         sys.exit(1)
+#_____________________________________________________________________________
+def fork(stdin='/dev/null', stdout='/dev/null', stderr='/dev/null'):
+    """Run Attribute Authority in a separate child process
+    Thanks to Jorgen Hermann and user contributors for fork code
+    http://aspn.activestate.com/ASPN/Cookbook/Python/Recipe/66012
+    """
+    try:
+        pid = os.fork()
+        if pid > 0:
+            # exit first parent
+            sys.exit(0)
+    except OSError, e:
+        print >>sys.stderr, "fork #1 failed: %d (%s)" % (e.errno, e.strerror)
+        sys.exit(1)
+    # Decouple from parent environment
+    os.chdir("/") # Allows for current dir path being renamed or deleted
+    os.setsid()
+    os.umask(0)
+    # Redirect standard file descriptors
+    si = file(stdin, 'r')
+    so = file(stdout, 'a+')
+    se = file(stderr, 'a+', 0)
+    sys.stdout.flush()
+    sys.stderr.flush()
+    os.dup2(si.fileno(), sys.stdin.fileno())
+    os.dup2(so.fileno(), sys.stdout.fileno())
+    os.dup2(se.fileno(), sys.stderr.fileno())
+    # Do second fork
+    try:
+        pid = os.fork()
+        if pid > 0:
+            # exit from second parent
+            sys.exit(pid)
+    except OSError, e:
+        print >>sys.stderr, "fork #2 failed: %d (%s)" % (e.errno, e.strerror)
+        sys.exit(1)
+    # start the daemon main loop
+    try:
+         AsServer(port=options.port,
+                  services=[attAuthority(aa)],
+                  RequestHandlerClass=attAuthoritySOAPRequestHandler)
+    except socket.error, e:
+        print >>sys.stderr, "Attribute Authority Server socket error: %s" % \
+                         e[1]
+        sys.exit(1)
+    except Exception, e:
+        print >>sys.stderr, "Attribute Authority Server: %s" % e
+        sys.exit(1)
+#_____________________________________________________________________________
+if __name__ == '__main__':
+    parser = optparse.OptionParser()
+    # Check in installation area otherwise assume local directory
+    if 'NDG_DIR' in os.environ:
+        propFileDir = os.path.join(os.environ['NDG_DIR'], "conf")
+    else:
+        propFileDir = "."
+    propFilename = 'attAuthorityProperties.xml'
+    parser.add_option("-f",
+                      "--file",
+                      dest="propFilePath",
+                      default=os.path.join(propFileDir, propFilename),
+                      help=\
+"""properties file path - default is $NDG_DIR/%s or ./%s if NDG_DIR is not
+set""" % (propFilename, propFilename))
+    # Port may be set from an environment variable.  Note that this will be
+    # overridden if the port command line argument is set
+    aaPortNumEnvVarName = 'NDG_AA_PORT_NUM'
+    defaultPort = 5000
+    initPort = aaPortNumEnvVarName in os.environ and \
+        int(os.environ[aaPortNumEnvVarName]) or defaultPort
+    parser.add_option("-p",
+                      "--port",
+                      dest="port",
+                      default=initPort,
+                      type="int",
+                      help=\
+"specify a port number - default is %d or set environment variable \"%s\"" % \
+                                          (defaultPort, aaPortNumEnvVarName))
+    foregndFlags = ("-i", "--foreground")
+    parser.add_option(action="store_true",
+                      dest="foregndProc",
+                      default=False,
+                      help=\
+"run server as process in the foreground.  If not set, fork a child process",
+                      *foregndFlags)
+    parser.add_option("-d",
+                      "--debug",
+                      action="store_true",
+                      dest="debug",
+                      default=False,
+                      help=\
+"set to stop in debugger on receipt of WS request.  %s flag must be set also"\
+                                            % '/'.join(foregndFlags))
+    (options, args) = parser.parse_args()
+    # Create server instance at start up
+    try:
+        aa = AttAuthority(options.propFilePath)
+    except Exception, e:
+        print >>sys.stderr, "Initialising Attribute Authority: %s" % e
+        sys.exit(1)
+    if options.foregndProc:
+        runInForegnd()
+    else:
+        if options.debug:
+            print >>sys.stderr, "%s must be set with debug option" % \
+                                                    '/'.join(foregndFlags)
+            parser.print_help()
+            sys.exit(1)
+        # Run server in child process
+        fork()

TI12-security/trunk/python/bin/SessionMgrServer.py

-                      r690
+                      r1227
 import sys
 import os
 import getopt
+import optparse
 # Web service interface
 …
 #_____________________________________________________________________________
+def usage(fp=sys.stdout):
+    """Describes how to call SessionMgrServer from the command line"""
+    fp.write("usage: %s \n" % sys.argv[0].split(os.sep)[-1])
+    fp.write("""
+[-h | --help]
+    print usage summary
+[-f <properties file path> | --file=<properties file path>]
+[-p <port #> | --port=<port #>]
+    port number for server to listen on
+[-d | --debug]
+    set to stop in debugger on receipt of WS request
+[-n | --nopassphrase]
+    skip the prompt for the database pass-phrase.  In this case, the
+    pass-phrase must be set in the 'dbURI' tag in the configuration file.
+[-w | --noencrkey]
+    skip the prompt for the encryption key and pick up the key from the
+    'sessMgrEncrKey' tag in the configuration file.
+""")
+def runInForegnd():
+    """Run Session Manager in the same process as this script"""
+    print "Session Manager Server listening..."
+    try:
+         AsServer(port=options.port,
+                  services=(sessionMgr(sm, debug=options.debug),),
+                  RequestHandlerClass=SessionMgrSOAPRequestHandler)
+    except KeyboardInterrupt:
+        sys.exit(0)
+    except socket.error, e:
+        print >>sys.stderr, "Session Manager Server socket error: %s" % e[1]
+        sys.exit(1)
+    except Exception, e:
+        print >>sys.stderr, "Session Manager Server: %s" % e
+        sys.exit(1)
+#_____________________________________________________________________________
+def fork(stdin='/dev/null', stdout='/dev/null', stderr='/dev/null'):
+    """Run Session Manager in a separate child process
+    Thanks to Jorgen Hermann and user contributors for fork code
+    http://aspn.activestate.com/ASPN/Cookbook/Python/Recipe/66012
+    """
+    try:
+        pid = os.fork()
+        if pid > 0:
+            # exit first parent
+            sys.exit(0)
+    except OSError, e:
+        print >>sys.stderr, "fork #1 failed: %d (%s)" % (e.errno, e.strerror)
+        sys.exit(1)
+    # Decouple from parent environment
+    os.chdir("/") # Allows for current dir path being renamed or deleted
+    os.setsid()
+    os.umask(0)
+    # Redirect standard file descriptors
+    si = file(stdin, 'r')
+    so = file(stdout, 'a+')
+    se = file(stderr, 'a+', 0)
+    sys.stdout.flush()
+    sys.stderr.flush()
+    os.dup2(si.fileno(), sys.stdin.fileno())
+    os.dup2(so.fileno(), sys.stdout.fileno())
+    os.dup2(se.fileno(), sys.stderr.fileno())
+    # Do second fork
+    try:
+        pid = os.fork()
+        if pid > 0:
+            # exit from second parent
+            sys.exit(pid)
+    except OSError, e:
+        print >>sys.stderr, "fork #2 failed: %d (%s)" % (e.errno, e.strerror)
+        sys.exit(1)
+    # start the daemon main loop
+    try:
+         AsServer(port=options.port,
+                  services=(sessionMgr(sm),),
+                  RequestHandlerClass=SessionMgrSOAPRequestHandler)
+    except socket.error, e:
+        print >>sys.stderr, "Session Manager Server socket error: %s" % e[1]
+        sys.exit(1)
+    except Exception, e:
+        print >>sys.stderr, "Session Manager Server: %s" % e
+        sys.exit(1)
 #_____________________________________________________________________________
 if __name__ == '__main__':
+    try:
+        optLongNames = [ "help",
+                         "file=",
+                         "port=",
+                         "debug",
+                         "nopassphrase",
+                         "noencrkey"]
+        opts, args = getopt.getopt(sys.argv[1:], "hf:p:dnw", optLongNames)
+    except getopt.GetoptError, e:
+        sys.stderr.write("Error: %s\n\n" % e)
+        usage(fp=sys.stderr)
+        sys.exit(1)
+    propFilePath = None
+    port = 5700 #80 # temporary port for testing
+    debug = False
+    noPPhrase = False
+    noWSDLencrKey = False
+    for opt, arg in opts:
+        if opt in ("-h", "--help"):
+            usage()
+            sys.exit(0)
+        elif opt in ("-d", "--debug"):
+            debug = True
+        elif opt in ("-f", "--file"):
+            propFilePath = arg
+        elif opt in ("-p", "--port"):
+            port = int(arg)
+        elif opt in ("-n", "--nopassphrase"):
+            noPPhrase = True
+        elif opt in ("-w", "--noencrkey"):
+            noWSDLencrKey = True
+        else:
+            sys.stderr.write("Option not recognised: %s" % opt)
+            usage(fp=sys.stderr)
+            sys.exit(1)
+    if propFilePath is None:
+        # Check in installation area otherwise assume local directory
+        if 'NDG_DIR' in os.environ:
+            propFileDir = os.path.join(os.environ['NDG_DIR'], "conf")
+        else:
+            propFileDir = "."
+        propFilePath = os.path.join(propFileDir, 'sessionMgrProperties.xml')
+    if noPPhrase is False:
+    parser = optparse.OptionParser()
+    # Check in installation area otherwise assume local directory
+    propFileDir = 'NDG_DIR' in os.environ and \
+                            os.path.join(os.environ['NDG_DIR'], "conf") or "."
+    propFilename = 'sessionMgrProperties.xml'
+    parser.add_option("-f",
+                      "--file",
+                      dest="propFilePath",
+                      default=os.path.join(propFileDir, propFilename),
+                      help=\
+"""properties file path - default is $NDG_DIR/%s or ./%s if NDG_DIR is not
+set""" % (propFilename, propFilename))
+    parser.add_option("-w",
+                      "--noencrkey",
+                      action="store_true",
+                      dest="noWSDLencrKey",
+                      default=False,
+                      help=\
+"""skip the prompt for the encryption key and pick up the key from the
+'sessMgrEncrKey' tag in the properties file.""")
+    parser.add_option("-n",
+                      "--nopassphrase",
+                      action="store_true",
+                      dest="noPPhrase",
+                      default=False,
+                      help=\
+"""skip the prompt for the database pass-phrase.  In this case, the
+pass-phrase must be set in the 'dbURI' tag in the configuration file.""")
+    # Port may be set from an environment variable.  Note that this will be
+    # overridden if the port command line argument is set
+    smPortNumEnvVarName = 'NDG_SM_PORT_NUM'
+    defaultPort = 5700
+    initPort = smPortNumEnvVarName in os.environ and \
+                        int(os.environ[smPortNumEnvVarName]) or defaultPort
+    parser.add_option("-p",
+                      "--port",
+                      dest="port",
+                      default=initPort,
+                      type="int",
+                      help=\
+"specify a port number - default is %d or set environment variable \"%s\"" % \
+                                          (defaultPort, smPortNumEnvVarName))
+    foregndFlags = ("-i", "--foreground")
+    parser.add_option(action="store_true",
+                      dest="foregndProc",
+                      default=False,
+                      help=\
+"run server as process in the foreground.  If not set, fork a child process",
+                      *foregndFlags)
+    parser.add_option("-d",
+                      "--debug",
+                      action="store_true",
+                      dest="debug",
+                      default=False,
+                      help=\
+"set to stop in debugger on receipt of WS request.  %s flag must be set also"\
+                                            % '/'.join(foregndFlags))
+    (options, args) = parser.parse_args()
+    if options.noPPhrase is False:
         import getpass
         try:
 …
     if noWSDLencrKey is False:
+    if options.noWSDLencrKey is False:
         import getpass
         try:
 …
     # Create server instance at start up
-#    import pdb
-#    pdb.set_trace()
     try:
         sm = SessionMgr(propFilePath,
+        sm = SessionMgr(options.propFilePath,
                         credReposPPhrase=credReposPPhrase,
                         sessMgrEncrKey=sessMgrEncrKey)
     except Exception, e:
+        sys.stderr.write("Initialising Session Manager: %s\n" % e)
+        sys.exit(1)
+    print "Session Manager Server listening..."
+    try:
+         AsServer(port=port,
+                  services=(sessionMgr(sm, debug=debug),),
+                  RequestHandlerClass=SessionMgrSOAPRequestHandler)
+    except KeyboardInterrupt:
+        sys.exit(0)
+    except socket.error, e:
+        sys.stderr.write("Session Manager Server socket error: %s\n" % \
+                         e[1])
+        sys.exit(1)
+    except Exception, e:
+        sys.stderr.write("Session Manager Server: %s\n" % e)
+        sys.exit(1)
+        print >>sys.stderr, "Initialising Session Manager: %s" % e
+        sys.exit(1)
+    if options.foregndProc:
+        runInForegnd()
+    else:
+        if options.debug:
+            print >>sys.stderr, "%s must be set with debug option" % \
+                                                    '/'.join(foregndFlags)
+            parser.print_help()
+            sys.exit(1)
+        # Run server in child process
+        fork()

TI12-security/trunk/python/ndgSetup.sh

-                      r941
+                      r1227
 # NDG Custom Python installation
 if [ ! `echo ${PATH} | grep "${NDG_DIR}/<Python location>"` ]; then
 …
     export PATH=${NDG_DIR}/<Python location>:$PATH
 fi
+# Override default Attribute Authority and Session Manager port number
+# settings
+#export NDG_AA_PORT_NUM=5001
+#export NDG_SM_PORT_NUM=
 # Globus Toolkit and MyProxy Server

Note: See TracChangeset for help on using the changeset viewer.