Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]


Groups > comp.lang.python.announce > #533 > unrolled thread

sec-wall 1.1 / A feature packed security proxy

Started byDariusz Suchojad <dsuch@gefira.pl>
First post2012-02-29 20:34 +0100
Last post2012-02-29 20:34 +0100
Articles 1 — 1 participant

Back to article view | Back to comp.lang.python.announce


Contents

  sec-wall 1.1 / A feature packed security proxy Dariusz Suchojad <dsuch@gefira.pl> - 2012-02-29 20:34 +0100

#533 — sec-wall 1.1 / A feature packed security proxy

FromDariusz Suchojad <dsuch@gefira.pl>
Date2012-02-29 20:34 +0100
Subjectsec-wall 1.1 / A feature packed security proxy
Message-ID<mailman.324.1330619256.3037.python-announce-list@python.org>
Hello,

the version 1.1 of sec-wall has just been released.

Notable changes
---------------

- Added an 'ssl-wrap-only' option for terminating SSL without requiring 
clients to provide any authentication information

- Simplified access to sec-wall's internals from other Python packages 
so various authentication methods can be directly imported from Python code


What is sec-wall?
-----------------
sec-wall is a feature packed security proxy.

sec-wall has many interesting features, including support for SSL/TLS, 
WS-Security, HTTP Auth Basic/Digest, extensible authentication schemes 
based on custom HTTP headers and XPath expressions, powerful URL 
matching/rewriting and an optional headers enrichment.

sec-wall uses and is built on top of several fantastic Python open 
source technologies, such as gevent, Spring Python, pesto, lxml, zdaemon 
or PyYAML and is meant to be highly customizable and easy to use. Good 
performance, tests, documentation and building an awesome community are 
at the very heart of the project.

Here's an example showing how little is needed to secure a backend 
server with HTTP Basic Auth.

# ######################################################

# -*- coding: utf-8 -*-

# stdlib
import uuid

# Don't share it with anyone.
INSTANCE_SECRET = '5bf4e78c256746eda2ce3e0e73f256d0'

# May be shared with the outside world.
INSTANCE_UNIQUE = uuid.uuid4().hex

def default():
     return {
         'basic-auth':True,
         'basic-auth-username':'MyUser',
         'basic-auth-password':'MySecret',
         'basic-auth-realm':'Secure area',
         'host': 'http://example.com'
     }

urls = [
     ('/*', default()),
]

# ######################################################

Links
-----

Project's homepage: http://sec-wall.gefira.pl/
Getting started: 
http://sec-wall.gefira.pl/documentation/getting-started/index.html
Usage examples: 
http://sec-wall.gefira.pl/documentation/usage-examples/index.html
Twitter: https://twitter.com/fourthrealm
Blog: http://www.gefira.pl/blog
IRC: #sec-wall channel on Freenode network

cheers,

-- 
Dariusz Suchojad

[toc] | [standalone]


Back to top | Article view | comp.lang.python.announce


csiph-web