堆栈内存溢出
  简体   繁体   English

Twisted Python客户端/服务器的Kerberos身份验证

[英]Kerberos authentication for Twisted Python client/server

 原文  2016-01-04 16:12:08       python/ windows/ active-directory/ twisted/ kerberos

问题描述

Task: add Kerberos active directory authentication to an insecure reporting and data manipulation desktop application. 任务:将Kerberos活动目录身份验证添加到不安全的报告和数据处理桌面应用程序中。 This app is... 这个程序是...

  • written in Stackless Python 2.7 用Stackless Python 2.7编写
  • uses Twisted for client-server interactions 使用Twisted进行客户端-服务器交互
  • Client is compiled to an exe and runs on Windows 客户端编译为exe并在Windows上运行
  • Servers run on Linux (Red Hat) 服务器在Linux(Red Hat)上运行

Currently we pull the Windows network ID (logon name) from the user's account and pass to the server, which looks up what permissions that user is configured to have, and passes back menu options which provide access just to those features. 当前,我们从用户帐户中提取Windows网络ID(登录名)并传递给服务器,该服务器查找用户配置为拥有的权限,并传递回菜单选项,这些选项仅提供对这些功能的访问。 Main weakness is that one could send a different username to the server and access other permissions. 主要缺点是可以向服务器发送不同的用户名并访问其他权限。

Therefore Kerberos. 因此是Kerberos。 (And LDAP, from what I read.) (还有LDAP,据我所读。)

Question: 题:

Does Twisted provide a built-in Kerberos setup? Twisted是否提供内置的Kerberos设置?
authkerb perhaps? authkerb也许?

I found authkerb after a ton of searching, but I don't see feedback from anyone using it. 经过大量搜索后,我找到了authkerb,但没有看到任何人使用它的反馈。 I'm not sure where to start. 我不确定从哪里开始。 If anyone has experience with this, or if you've run across any relevant info to implementing Kerberos specifically with Twisted , I'd appreciate it immensely! 如果有人对此有经验,或者您遇到过与Twisted一起专门实施Kerberos的任何相关信息,我将不胜感激!

I've never touched anything like Kerberos before, so I read up on it: 我以前从未接触过Kerberos之类的东西,因此我继续阅读以下内容: 

kerberos.org/software/tutorial.html  
technet.microsoft.com/library/cc961976  
web.mit.edu/kerberos/krb5-latest/doc/appdev/init_creds.html  
web.mit.edu/kerberos/krb5-1.12/doc/user/tkt_mgmt.html

Also found tips on what to avoid: 还找到了避免的提示: 

faqs.org/faqs/kerberos-faq/general/section-83.html

1 个解决方案

解决方案1
 1 已采纳  2016-01-04 18:05:53

Twisted does not. 扭曲不。

However, http://calendarserver.org , which is bassed on Twisted, does have kerberos authentication, and was the originator of the https://pypi.python.org/pypi/pykerberos project. 但是, http ://calendarserver.org(受Twisted的熏陶)具有kerberos身份验证,并且是https://pypi.python.org/pypi/pykerberos项目的发起者。 It should serve as a workable example. 它应该作为一个可行的例子。

暂无
暂无

声明:本站的技术帖子网页,遵循CC BY-SA 4.0协议,如果您需要转载,请注明本站网址或者原文地址。任何问题请咨询:yoyou2525@163.com.

相关问题 扭曲的Python,TLS和客户端/服务器证书认证错误 - Twisted Python, TLS and client/server certificate authentication error 如何在python的Twisted客户端服务器应用程序中添加身份验证(用户名/密码)? - How to add authentication(Username/Password) in Twisted client server application in python? python扭曲简单的服务器客户端 - python twisted simple server client 使用Twisted Python的UDP客户端和服务器 - UDP client and server with Twisted Python Python / Twisted-服务器还是客户端? - Python/Twisted - Server also a client? 具有Twisted的交互式Python客户端/服务器 - Interactive Python Client/Server with Twisted python / twisted上的客户端/服务器 - Client/server on python-twisted 如何使用python suds客户端进行kerberos身份验证 - How to do kerberos authentication with a python suds client 如何将身份验证添加到(Python)扭曲的xmlrpc服务器 - How to add authentication to a (Python) twisted xmlrpc server 相互SSL身份验证 - 客户端和服务器端。 Python - > Django / Twisted / Tornado - Mutual SSL Authentication - Client and Server sides. Python -> Django/Twisted/Tornado
相关标签
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM