[英]Kerberos authentication for Twisted Python client/server
Task: add Kerberos active directory authentication to an insecure reporting and data manipulation desktop application. 任务:将Kerberos活动目录身份验证添加到不安全的报告和数据处理桌面应用程序中。 This app is...
这个程序是...
Currently we pull the Windows network ID (logon name) from the user's account and pass to the server, which looks up what permissions that user is configured to have, and passes back menu options which provide access just to those features. 当前,我们从用户帐户中提取Windows网络ID(登录名)并传递给服务器,该服务器查找用户配置为拥有的权限,并传递回菜单选项,这些选项仅提供对这些功能的访问。 Main weakness is that one could send a different username to the server and access other permissions.
主要缺点是可以向服务器发送不同的用户名并访问其他权限。
Therefore Kerberos. 因此是Kerberos。 (And LDAP, from what I read.)
(还有LDAP,据我所读。)
Question: 题:
Does Twisted provide a built-in Kerberos setup? Twisted是否提供内置的Kerberos设置?
authkerb perhaps? authkerb也许?
I found authkerb after a ton of searching, but I don't see feedback from anyone using it. 经过大量搜索后,我找到了authkerb,但没有看到任何人使用它的反馈。 I'm not sure where to start.
我不确定从哪里开始。 If anyone has experience with this, or if you've run across any relevant info to implementing Kerberos specifically with Twisted , I'd appreciate it immensely!
如果有人对此有经验,或者您遇到过与Twisted一起专门实施Kerberos的任何相关信息,我将不胜感激!
I've never touched anything like Kerberos before, so I read up on it: 我以前从未接触过Kerberos之类的东西,因此我继续阅读以下内容:
kerberos.org/software/tutorial.html
technet.microsoft.com/library/cc961976
web.mit.edu/kerberos/krb5-latest/doc/appdev/init_creds.html
web.mit.edu/kerberos/krb5-1.12/doc/user/tkt_mgmt.html
Also found tips on what to avoid: 还找到了避免的提示:
faqs.org/faqs/kerberos-faq/general/section-83.html
Twisted does not. 扭曲不。
However, http://calendarserver.org , which is bassed on Twisted, does have kerberos authentication, and was the originator of the https://pypi.python.org/pypi/pykerberos project. 但是, http ://calendarserver.org(受Twisted的熏陶)具有kerberos身份验证,并且是https://pypi.python.org/pypi/pykerberos项目的发起者。 It should serve as a workable example.
它应该作为一个可行的例子。
声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.