dragonskills99
/
CHAP
ウォッチ 1
スター 0
フォーク 0
コード 課題 0 プルリクエスト 0 リリース 0 Wiki アクティビティ
Some python scrips for demonstrating chap protocol
選択できるのは25トピックまでです。 トピックは、先頭が英数字で、英数字とダッシュ('-')を使用した35文字以内のものにしてください。
11 コミット
1 ブランチ
ツリー: a90a9f9d4b
ブランチ タグ
${ item.name }
ブランチ ${ searchTerm } を作成
'a90a9f9d4b' から
${ noResults }
CHAP/chap-server.py

chap-server.py 2.2KB
Raw Blame 履歴

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566 
  1. #!/usr/bin/env python2

  2. 

  3. import uuid

  4. import hashlib

  5. from xmlrpc.server import SimpleXMLRPCServer

  6. from xmlrpc.server import SimpleXMLRPCRequestHandler

  7. 

  8. # Restrict to a particular path.

  9. class RequestHandler(SimpleXMLRPCRequestHandler):

  10.     rpc_paths = ('/RPC2',)

  11. 

  12. # Create server

  13. server = SimpleXMLRPCServer(("localhost", 8000),

  14.                             requestHandler=RequestHandler)

  15. server.register_introspection_functions()

  16. 

  17. 

  18. # Register an instance; all the methods of the instance are

  19. # published as XML-RPC methods

  20. class CHAP:

  21.     test_password = 'Test123'

  22.     # initializes class-instance and instance variables

  23.     def __init__( self ):

  24.         self.keys = {}

  25.         self.authenticated = {}

  26. 

  27.     # tells the server to start the autentification process

  28.     # and send the generated random salt

  29.     def init( self ):

  30.         session = str( uuid.uuid4() )

  31.         key = str( uuid.uuid4() )

  32.         while session in self.keys:

  33.             session = str( uuid.uuid4() )

  34. 

  35.         self.keys[ session ] = key

  36.         return [ session, key ]

  37. 

  38.     # checks if send hash is same as internally generated to validate if the correct

  39.     # password was used

  40.     def auth( self, session, password_hash ):

  41.         if session in self.keys:

  42.             combined = CHAP.test_password + self.keys[ session ]

  43.             passhash = hashlib.sha256( combined.encode( 'utf-8' ) ).hexdigest()

  44.             self.authenticated[ session ] = passhash == password_hash

  45.             return self.authenticated[ session ] == True

  46.         else:

  47.             return False

  48. 

  49.     # adds functionality for users to log them selfes off, but also need the

  50.     # the password_hash to ensure, that nobody else logs you off

  51.     def logout( self, session, password_hash ):

  52.         if self.auth( session, password_hash ):

  53.             del self.authenticated[ session ]

  54.             del self.keys[ session ]

  55.         return self.authenticated.get( session ) != True

  56. 

  57.     # a little method that refuses to say hi, if you

  58.     # are not authenticated

  59.     def hello( self, session ):

  60.         if ( self.authenticated.get( session ) == True ):

  61.             return 'Hi, you are authenticated'

  62.         else:

  63.             return 'Sorry, please authenticate first'

  64. server.register_instance(CHAP())

  65. # Run the server's main loop

  66. server.serve_forever()