File: httpauthdemo_redis.py

package info (click to toggle)
python-cyclone 1.1-1
  • links: PTS, VCS
  • area: main
  • in suites: jessie, jessie-kfreebsd
  • size: 1,388 kB
  • ctags: 1,372
  • sloc: python: 8,823; sh: 183; makefile: 13; sql: 12
file content (91 lines) | stat: -rwxr-xr-x 2,951 bytes parent folder | download | duplicates (2) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
 
#!/usr/bin/env python
# coding: utf-8
#
# Copyright 2010 Alexandre Fiori
# based on the original Tornado by Facebook
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
#     http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.

import base64
import functools
import sys

import cyclone.redis
import cyclone.web

from twisted.python import log
from twisted.internet import defer, reactor


class Application(cyclone.web.Application):
    def __init__(self):
        # Defaults to localhost:6379, dbid=0
        redisdb = cyclone.redis.lazyConnectionPool()

        handlers = [
            (r"/", IndexHandler, dict(redisdb=redisdb)),
        ]
        cyclone.web.Application.__init__(self, handlers, debug=True)


def HTTPBasic(method):
    @defer.inlineCallbacks
    @functools.wraps(method)
    def wrapper(self, *args, **kwargs):
        msg = None
        if "Authorization" in self.request.headers:
            auth_type, data = self.request.headers["Authorization"].split()
            try:
                assert auth_type == "Basic"
                usr, pwd = base64.b64decode(data).split(":", 1)
                redis_pwd = yield self.redisdb.get("cyclone:%s" % usr)
                assert pwd == str(redis_pwd)  # it may come back as an int!
            except AssertionError:
                msg = "Authentication failed"
            except cyclone.redis.ConnectionError, e:
                # There's nothing we can do here. Just wait for the
                # connection to resume.
                log.msg("Redis is unavailable: %s" % e)
                raise cyclone.web.HTTPError(503)  # Service Unavailable
        else:
            msg = "Authentication required"

        if msg:
            raise cyclone.web.HTTPAuthenticationRequired(
                            log_message=msg, auth_type="Basic", realm="DEMO")
        else:
            self._current_user = usr
            yield defer.maybeDeferred(method, self, *args, **kwargs)
    return wrapper


class IndexHandler(cyclone.web.RequestHandler):
    def initialize(self, redisdb):
        self.redisdb = redisdb

    @HTTPBasic
    def get(self):
        self.write("Hi, %s." % self._current_user)


def main():
    log.startLogging(sys.stdout)
    log.msg(">>>> Set the password from command line: "
            "redis-cli set cyclone:root 123")
    log.msg(">>>> Then authenticate as root/123 from the browser")
    reactor.listenTCP(8888, Application(), interface="127.0.0.1")
    reactor.run()


if __name__ == "__main__":
    main()