Ignore:
Timestamp:
20/06/07 10:14:00 (13 years ago)
Author:
pjkersha
Message:

ndg.security.server/ndg/security/server/SessionMgr/server-config.tac:

  • added X509CertRead import
  • removed getCookie keyword from connect call - no longer needed
  • changed connect response to return sessID instead of cookie
  • soap_disconnect - pick up userCert arg if message wasn't signed
  • soap_getAttCert - remove refs to encrSessMgrURI - no longer needed

ndg.security.server/ndg/security/server/SessionMgr/init.py:

  • include X509Cert import
  • SessionMgr?.connect: removed getCookie keyword no longer needed. Put in

explicit keyword args rather than kw; return sessID instead of cookie

  • SessionMgr?.connect2UserSession: allow X509Cert type input for cert.

www/html/sessionMgr.wsdl,
ndg.security.server/ndg/security/server/SessionMgr/SessionMgr_services_server.py,
ndg.security.common/ndg/security/common/SessionMgr/SessionMgr_services.py,
ndg.security.common/ndg/security/common/SessionMgr/SessionMgr_services_types.py:

  • get rid of getCookie input to connect
  • change sessCookie to sessID in connect response
  • get rid of encrSessMgrURI inputs

ndg.security.test/ndg/security/test/SessionMgr/SessionMgrClientTest.py:

  • swapped sessCookie for sessID vars
  • commented out test1AddUser - this method is likely to go from Session

Manager

  • test2CookieConnect and test3ProxyCertConnect replaced with test2Connect

as SessionMgr?.connect effectively behaces the same in both cases, a proxy
cert and sess id are returned.

  • test3ConnectNoCreateServerSess: new test returns proxy cert from Session

Manager but doesn't create a session - effectively MyProxy? get delegation over
SOAP

  • test4CookieDisconnect -> test4DisconnectUsingSessID because sess id is used

instead of cookies for SM interface

  • test5ProxyCertDisconnect -> test5DisconnectUsingProxyCert - more clear

naming

  • likewise, test6CookieGetAttCert -> test6GetAttCertUsingSessID ... and

other test method names ...

  • test7ProxyCertGetAttCert: important change - use proxy cert returned from

test2Connect in order to authenticate in this request

ndg.security.test/ndg/security/test/SessionMgr/sessionMgrClientTest.cfg:

  • updated test section names
  • use server cert settings for initial connection to SM. Once connect has

been called, client can use proxy cert.

ndg.security.test/ndg/security/test/SessionCookie/SessionCookieTest.py:
fixes for complete working version

ndg.security.common/ndg/security/common/SessionMgr/init.py:

  • remove getCookie keyword for connect method. connect now returns sessID

instead of complete cookie

  • remove encrSessionMgrURI and sessCookie keywords from disconnect and

getAttCert calls - no longer needed.

ndg.security.common/ndg/security/common/X509.py:

  • enable X509Stack.push to take a cert in string format as input.

ndg.security.common/ndg/security/common/SessionCookie.py:

  • include timedelta import - enables specification of lifetime from now

for cookie

  • fix signingPriKey -> priKey

ndg.security.common/ndg/security/common/wsSecurity.py: make Crypto import
conditional as users of SignatureHandler? only don't need it

File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/python/www/html/sessionMgr.wsdl

    r2437 r2620  
    3131            <xsd:element name="passphrase" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    3232                    <xsd:element name="createServerSess" type="xsd:boolean" minOccurs="1" maxOccurs="1"/> 
    33                     <xsd:element name="getCookie" type="xsd:boolean" minOccurs="1" maxOccurs="1"/> 
    3433          </xsd:sequence> 
    3534        </xsd:complexType> 
     
    4241                    <xsd:element name="proxyPriKey" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    4342                    <xsd:element name="userCert" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    44                     <xsd:element name="cookie" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
     43                    <xsd:element name="sessID" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
    4544                  </xsd:sequence> 
    4645                </xsd:complexType> 
     
    5049        <xsd:complexType> 
    5150                  <xsd:sequence> 
     51                    <xsd:element name="userCert" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
    5252                    <xsd:element name="sessID" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
    53                     <xsd:element name="encrSessionMgrURI" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
    5453                  </xsd:sequence> 
    5554                </xsd:complexType> 
     
    6564                    <xsd:element name="userCert" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
    6665                    <xsd:element name="sessID" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
    67                     <xsd:element name="encrSessionMgrURI" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
    6866                    <xsd:element name="attAuthorityURI" type="xsd:string" minOccurs="1" maxOccurs="1"/> 
    6967                    <xsd:element name="attAuthorityCert" type="xsd:string" minOccurs="0" maxOccurs="1"/> 
Note: See TracChangeset for help on using the changeset viewer.