-
Notifications
You must be signed in to change notification settings - Fork 1
/
auth.py
executable file
·76 lines (68 loc) · 2.37 KB
/
auth.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
# -*- coding: utf-8 -*-
# ===============================================================================
#
# Authors: Massimiliano Cannata, Milan Antonovic
#
# Copyright (c) 2015 IST-SUPSI (www.supsi.ch/ist)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or (at your option)
# any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA
#
# ===============================================================================
"""
Add this files to configure basic authentication in Apache2
<Location /istsos>
AuthType Basic
AuthName "Welcome to istSOS"
AuthBasicProvider wsgi
WSGIAuthUserScript /usr/local/istsos/auth.py
Require valid-user
</Location>
"""
import sys
from os import path
import hashlib
import pprint
try:
import cPickle as pic
except ImportError:
try:
import pickle as pic
except ImportError:
print >> sys.stderr, ("Failed to import pickle from any known place")
pp = pprint.PrettyPrinter(indent=4)
istsosPasswd = path.join(path.dirname(path.abspath(__file__)), "services", "istsos.passwd")
if not path.isfile(istsosPasswd):
with open(istsosPasswd, 'w+') as f:
users = {
"admin": {
"password": "%s" % (hashlib.md5("istsos").hexdigest()),
"roles": {
"admin": {
"*": ["*"]
}
}
}
}
pic.dump(users, f)
def check_password(environ, user, password):
#print >> sys.stderr, "\nCheck_password: %s" % pp.pformat(environ)
#return True
with open(istsosPasswd, 'rb') as f:
users = pic.load(f)
if user in users.keys():
if hashlib.md5(password).hexdigest() == users[user]["password"]:
return True
return False
return None