Ignore:
Timestamp:
13/05/09 15:00:34 (10 years ago)
Author:
pjkersha
Message:

Further improvements to the authorization middleware:

  • PEPFilter no longer explicitly calls the PEPResultHandlerMiddleware (This latter class is the WSGI component which handles the access denied response that the server returns). This is not necessary as it can set a 403 response in order to trigger multiHandlerIntercept callback function set in the MultiHandler? instance. This responds to all 403 type status codes by invoking the PEPResultHandlerMiddleware.
  • ndg.security.common.authz.msi: improvements to the PDP, PIP and Response classes.
  • ndg.security.test.integration.dap: added integration test for secured pyDAP service
File:
1 edited

Legend:

Unmodified
Added
Removed
  • TI12-security/trunk/python/ndg.security.server/ndg/security/server/wsgi/ssl.py

    r4863 r5280  
    8686        elif not self.isSSLClientCertSet: 
    8787            log.error("No SSL Client path set for request to [%s]" % self.path) 
    88             return self._setErrorResponse(environ, start_response, 
     88            return self._setErrorResponse(start_response=start_response, 
    8989                                          msg='No client SSL Certificate set') 
    9090             
     
    9292            return self._setResponse(environ, start_response) 
    9393        else: 
    94             return self._setErrorResponse(environ, start_response) 
     94            return self._setErrorResponse(start_response=start_response) 
    9595             
    9696    def _setResponse(self,  
     
    100100                                 'SSLClientAuthNMiddleware'): 
    101101        return super(SSLClientAuthNMiddleware, self)._setResponse(environ,  
    102                                                        start_response, 
    103                                                        notFoundMsg=notFoundMsg) 
     102                                                    start_response, 
     103                                                    notFoundMsg=notFoundMsg) 
    104104 
    105105    def _setErrorResponse(self,  
    106                           environ,  
    107106                          start_response, 
    108107                          msg='Invalid SSL client certificate'): 
    109         return super(SSLClientAuthNMiddleware, self)._setResponse(environ,  
    110                                                    start_response, 
    111                                                    msg=msg, 
    112                                                    code=self.errorResponseCode) 
     108        return super(SSLClientAuthNMiddleware, self)._setResponse( 
     109                                                start_response=start_response, 
     110                                                msg=msg, 
     111                                                code=self.errorResponseCode) 
    113112 
    114113    def isValidClientCert(self, environ): 
Note: See TracChangeset for help on using the changeset viewer.