Package pyGlobus :: Module security
[show private | hide private]
[frames | no frames]

Module pyGlobus.security

A module to provide some of the shared GSI functionality.
Classes
EVP_Key A class for the underlying EVP_PKEY* objects.
GSSBuffer A class for the underlying gss_buffer_t object
GSSContext A class for the underlying gss_ctx_id_t object.
GSSCred A class for the underlying gss_cred_id_t object.
GSSMechs A class for the underlying gss_OID_set object.
GSSName A class for the underlying gss_name_t object.
GSSUsage A class for the underlying gss_cred_usage_t object.
SecuritySingleton Activates the security module once no matter how many instances are created.
X509_Request A simple class for the underlying X509_REQ* objects.

Exceptions
GSIException A sub-class of GlobusException.
GSSContextException A sub-class of GSSContextException.
GSSCredException A sub-class of GSIException.
GSSMechsException A sub-class of GSIException.
GSSNameException A sub-class of GSSContextException.

Function Summary
  genreq(issuer_gsscred, sub_gsscred, X509_request, private_key, bits)
Creates a X509_REQ and EVP_PKEY object, gsscred issuer's name is used for generation of gsscred sub's name.
  grid_proxy_destroy()
Destroys the user proxy in the default location or in the X509_USER_PROXY
  grid_proxy_info(verbose)
Retrieves information about the user proxy
  grid_proxy_init(verbose)
Creates a user proxy in the /tmp/x509uuid
  gridmap(globusid)
Returns the userid if it is in the grid-mapfile
  gss_no_cred_factory()
Returns a GSSCred containing GSS_C_NO_CRED.
  map_local_user(local_user)
Returns the DN of that the local account maps to.
  sign_request(icred, scred, req)
Not supported for gt-2.2
  userok(globusid, userid)
Returns 1 if the globusid maps to the userid in the ~/.gridmap file

Function Details

genreq(issuer_gsscred, sub_gsscred, X509_request, private_key, bits=512)

Creates a X509_REQ and EVP_PKEY object, gsscred issuer's name is used for generation of gsscred sub's name. gsscred sub object used for ??

Not supported for gt-2.2

grid_proxy_destroy()

Destroys the user proxy in the default location or in the X509_USER_PROXY
Returns:
None
Raises:
GSIException - AGSIException is raised if the user proxy cannot be destroyed

grid_proxy_info(verbose=1)

Retrieves information about the user proxy
Returns:
a string with all of the user proxy information
Raises:
GSIException - AGSIException is raised if information about the user proxy cannot be retrieved

grid_proxy_init(verbose=1)

Creates a user proxy in the /tmp/x509uuid

Writes the credential to /tmp/x509uid
Returns:
None
Raises:
GSIException - AGSIException is raised if the user proxy cannot be created

gridmap(globusid)

Returns the userid if it is in the grid-mapfile

If you are a non-root user it will look in ~/.gridmap first
Parameters:
globusid - a string of Subject: line in a usercert
Returns:
the userid that globusid maps to
Raises:
GSIException - AGSIException is raised if the globusid is not in the gridmap file

gss_no_cred_factory()

Returns a GSSCred containing GSS_C_NO_CRED.

GSS_C_NO_CRED is used by many GSI calls to indicate the usage of the default credential.

map_local_user(local_user)

Returns the DN of that the local account maps to.

sign_request(icred, scred, req)

Not supported for gt-2.2

userok(globusid, userid)

Returns 1 if the globusid maps to the userid in the ~/.gridmap file

Generated by Epydoc 2.0 on Mon Oct 13 13:47:21 2003 http://epydoc.sf.net