Home | Trees | Index | Help |
---|
Package pyGlobus :: Module security |
|
Classes | |
---|---|
ContextRequests |
Simple class that keeps track of requests made to security contexts The context can be requested to do the following: |
EVP_Key |
A class for the underlying EVP_PKEY* objects. |
GSICredential |
A class for the underlying globus_gsi_cred_handle_t |
GSICredentialAttr |
A class for the underlying globus_gsi_cred_handle_attr_t |
GSSBuffer |
A class for the underlying gss_buffer_t object |
GSSContext |
A class for the underlying gss_ctx_id_t object. |
GSSCred |
A class for the underlying gss_cred_id_t object. |
GSSMechs |
A class for the underlying gss_OID_set object. |
GSSName |
A class for the underlying gss_name_t object. |
GSSUsage |
A class for the underlying gss_cred_usage_t object. |
STACK_X509 |
|
STACK_X509_Factory |
Creates STACK_X509 instances |
X509 |
A class for underlying X509 objects |
X509_Request |
A simple class for the underlying X509_REQ* objects. |
Exceptions | |
---|---|
EVP_KeyException |
A subclass of GSIException. |
GSICredentialAttrException |
A subclass of GSIException. |
GSICredentialException |
A subclass of GSIException. |
GSIException |
A subclass of GlobusException. |
GSSBufferException |
A subclass of GSIException. |
GSSContextException |
A subclass of GSIException. |
GSSCredException |
A subclass of GSIException. |
GSSMechsException |
A subclass of GSIException. |
GSSNameException |
A subclass of GSSContextException. |
X509Exception |
A subclass of GSIException. |
Function Summary | |
---|---|
Checks the status of a certificate file. | |
Checks the status of a private key file. | |
Returns the certificate dir. | |
Returns the location of the hosts cert and key. | |
Returns the proxy cert filename | |
Returns the location of the services cert and key. | |
Returns the location of the users cert and key. | |
Destroys the user proxy in the default location or in the X509_USER_PROXY | |
Retrieves information about the user proxy | |
Generates a user proxy | |
Returns the userid if it is in the grid-mapfile | |
Returns the *first* DN in the gridmap file that maps to the local user's account. | |
Returns 0 if the globusid maps to the userid in the ~/.gridmap file Returns 1 if authorization fails |
Variable Summary | |
---|---|
int |
FILE_BAD_PERMISSIONS = 5 |
int |
FILE_DIR = 2 |
int |
FILE_DOES_NOT_EXIST = 3 |
int |
FILE_INVALID = 1 |
int |
FILE_NOT_OWNED = 4 |
int |
FILE_VALID = 0 |
int |
FILE_ZERO_LENGTH = 6 |
Function Details |
---|
check_certfile(filename)Checks the status of a certificate file. This is a convenience function used to check the status of a certificate file. The desired status is the current user has ownership and read/write permissions, while group and others only have read permissions.
|
check_keyfile(filename)Checks the status of a private key file. Convenience function that checks that a private key file is only readable and writeable by the user.
|
get_cert_dir()Returns the certificate dir. Returns the full path to the trusted certificate directory.
|
get_host_cert_filename()Returns the location of the hosts cert and key. Convenience function to return the full path to both the hosts certificate and private key files.
|
get_proxy_filename(proxy_type=1)Returns the proxy cert filename Returns the full path to the proxy cert. proxy_type A int constant switch describing whether to return an existing proxy filename, or a new filename suitable for creating a new proxy is returned.
|
get_service_cert_filename(service_name)Returns the location of the services cert and key. Convenience function to return the full path to both the services certificate and private key files. service_name A string containing the name of the service, e.g., 'ldap'.
|
get_user_cert_filename()Returns the location of the users cert and key. Convenience function to return the full path to both the users certificate and private key files.
|
grid_proxy_destroy(proxyFile=None)Destroys the user proxy in the default location or in the X509_USER_PROXY
|
grid_proxy_info(verbose=1, proxyFile=None)Retrieves information about the user proxy
|
grid_proxy_init(lifetime=720, verbose=1, verify=1, outFile=None, passphrase=None, debugCB=None, certDir=None, certFile=None, keyFile=None, bits=1024, proxyType=2)Generates a user proxy
|
gridmap(globusid)Returns the userid if it is in the grid-mapfile If you are a non-root user it will look in ~/.gridmap first
|
map_local_user(local_user)Returns the *first* DN in the gridmap file that maps to the local user's account. Note an account might have more than one DN associated with it.
|
userok(globusid, userid)Returns 0 if the globusid maps to the userid in the ~/.gridmap file Returns 1 if authorization fails
|
Variable Details |
---|
FILE_BAD_PERMISSIONS
|
FILE_DIR
|
FILE_DOES_NOT_EXIST
|
FILE_INVALID
|
FILE_NOT_OWNED
|
FILE_VALID
|
FILE_ZERO_LENGTH
|
Home | Trees | Index | Help |
---|
Generated by Epydoc 2.1 on Tue Apr 4 14:32:57 2006 | http://epydoc.sf.net |