sec-wall 1.1 / A feature packed security proxy
Dariusz Suchojad
dsuch at gefira.pl
Wed Feb 29 20:34:13 CET 2012
Hello,
the version 1.1 of sec-wall has just been released.
Notable changes
---------------
- Added an 'ssl-wrap-only' option for terminating SSL without requiring
clients to provide any authentication information
- Simplified access to sec-wall's internals from other Python packages
so various authentication methods can be directly imported from Python code
What is sec-wall?
-----------------
sec-wall is a feature packed security proxy.
sec-wall has many interesting features, including support for SSL/TLS,
WS-Security, HTTP Auth Basic/Digest, extensible authentication schemes
based on custom HTTP headers and XPath expressions, powerful URL
matching/rewriting and an optional headers enrichment.
sec-wall uses and is built on top of several fantastic Python open
source technologies, such as gevent, Spring Python, pesto, lxml, zdaemon
or PyYAML and is meant to be highly customizable and easy to use. Good
performance, tests, documentation and building an awesome community are
at the very heart of the project.
Here's an example showing how little is needed to secure a backend
server with HTTP Basic Auth.
# ######################################################
# -*- coding: utf-8 -*-
# stdlib
import uuid
# Don't share it with anyone.
INSTANCE_SECRET = '5bf4e78c256746eda2ce3e0e73f256d0'
# May be shared with the outside world.
INSTANCE_UNIQUE = uuid.uuid4().hex
def default():
return {
'basic-auth':True,
'basic-auth-username':'MyUser',
'basic-auth-password':'MySecret',
'basic-auth-realm':'Secure area',
'host': 'http://example.com'
}
urls = [
('/*', default()),
]
# ######################################################
Links
-----
Project's homepage: http://sec-wall.gefira.pl/
Getting started:
http://sec-wall.gefira.pl/documentation/getting-started/index.html
Usage examples:
http://sec-wall.gefira.pl/documentation/usage-examples/index.html
Twitter: https://twitter.com/fourthrealm
Blog: http://www.gefira.pl/blog
IRC: #sec-wall channel on Freenode network
cheers,
--
Dariusz Suchojad
More information about the Python-announce-list
mailing list