Ignore:
Timestamp:
13/05/08 09:34:07 (12 years ago)
Author:
pjkersha
Message:

Security Single Sign On code separated out of ows_server code stack and put in ndg.security. ows_server can still run single sign on but in alternate modes:

  • Single Sign On Service run from within ows_server code stack - all SSO controllers, templates and globals are imported from ndg.security
  • ... or ows_server runs as a client to a Single Sign On service running in a separate paster instance. ows_server imports SSO client interface code from ndg.security

ows_server/development.ini:

  • added logging config as available with Pylons 0.9.6

ows_server/ndgDiscovery.config: [NDG_SECURITY] settings are now divided into sub sections:

  • NDG_SECURITY.ssoClient - for running a client to a Single Sign On service
  • NDG_SECURITY.ssoService - for running an integral SSO service
  • NDG_SECURITY.wssecurity - digital signature for web service interfaces
  • TODO: separate section for Gatekeeper


ows_server/ows_server/models/ndgSecurity.py: get rid of sslPeerCertDN setting to SM client - not needed

ows_server/ows_server/config/environment.py: include templates from ndg.security.server.sso

ows_server/ows_server/config/ndgMiddleware.py: call separate security SSO service/client middleware set-up

ows_server/ows_server/config/routing.py,
ows_server/ows_server/controllers/wayf.py: separate wayf controller

ows_server/ows_server/controllers/login.py: code moved to ndg.security.server.sso.sso.controllers.login ows_server login extends this class
ows_server/ows_server/controllers/logout.py: likewise for logout - inherit from ndg.security.server.sso equivalent

ows_server/ows_server/lib/security_util.py:

  • stripFromURI returns str type not unicode
  • SecurityConfig? class no longer needed - code transfered to ndg.security

ows_server/ows_server/lib/base.py: remove security handling code and instead inherit from ndg.security.client.ssoclient.ssoclient.base.BaseController?

ows_server/ows_server/public/layout/ndg2.css: fix to header image path

ows_server/ows_server/templates/ndgPage.kid: embed code to base 64 encode return to URL

File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI05-delivery/ows_framework/trunk/ows_server/ows_server/templates/ndgPage.kid

    r3646 r3893  
    133133    </span> 
    134134     
    135     <!-- Login and out buttons -->     
     135    <!-- Login and out buttons -->   
    136136    <span py:def="logOut()" class="logOut"> 
     137            <?python 
     138            from base64 import urlsafe_b64encode 
     139             
     140            # Base 64 encode to enable passing around in 'r' argument of query 
     141            # string for use with login/logout 
     142            c.returnTo = c.requestURL 
     143            c.b64encReturnTo = urlsafe_b64encode(c.requestURL) 
     144            ?> 
    137145        <form action="$g.logout"> 
    138             <input type="hidden" name="r" value="${c.b64encRequestURL}"/> 
     146            <input type="hidden" name="r" value="${c.b64encReturnTo}"/> 
    139147            <input type="submit" value="Logout"/> 
    140148        </form> 
     
    142150     
    143151    <span py:def="logIn()" class="logIn"> 
     152            <?python 
     153            from base64 import urlsafe_b64encode 
     154             
     155            # Base 64 encode to enable passing around in 'r' argument of query 
     156            # string for use with login/logout 
     157            c.returnTo = c.requestURL 
     158            c.b64encReturnTo = urlsafe_b64encode(c.requestURL) 
     159            ?> 
    144160        <form action="$g.wayfuri"> 
    145             <input type="hidden" name="r" value="${c.b64encRequestURL}"/> 
     161            <input type="hidden" name="r" value="${c.b64encReturnTo}"/> 
    146162            <input type="submit" value="Login"/> 
    147163        </form> 
Note: See TracChangeset for help on using the changeset viewer.