book

Twisted Network Programming Essentials, 2nd Edition

by Abe Fettig, Jessica McKellar

March 2013

Beginner

191 pages

4h 9m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Why Use Twisted?What This Book CoversConventions Used in This BookWhat You’ll NeedChanges Since the Previous EditionUsing Code ExamplesSafari® Books OnlineHow to Contact UsAcknowledgments
Installing TwistedInstallation on LinuxMore package options and optional dependenciesInstallation on WindowsOptional dependenciesAdding Twisted utilities to your PATHInstallation on OS XOptional dependenciesInstalling from SourceRequired DependenciesInstalling a C compilerInstalling zope.interfaceInstalling Twisted from a Release TarballInstalling Twisted from a Source CheckoutInstalling Optional Dependencies from SourceTesting Your InstallationUsing the Twisted DocumentationAPI DocumentationSubproject DocumentationFinding Answers to Your QuestionsMailing ListsIRC ChannelsStack OverflowTwisted Blogs
A TCP Echo Server and ClientEvent-Driven ProgrammingThe ReactorTransportsProtocolsProtocol FactoriesDecoupling Transports and ProtocolsA TCP Quote Server and ClientProtocol State MachinesMore Practice and Next Steps
What Deferreds Do and Don’t DoThe Structure of a Deferred ObjectCallback Chains and Using Deferreds in the ReactorPractice: What Do These Deferred Chains Do?Exercise 1Exercise 2Exercise 3Exercise 4Exercise 5Exercise 6The Truth About addCallbacksExercise 7Exercise 8Key Facts About DeferredsSummary of the Deferred APIMore Practice and Next Steps
Responding to HTTP Requests: A Low-Level ReviewThe Structure of an HTTP RequestParsing HTTP RequestsHandling GET RequestsServing Static ContentStatic URL dispatchServing Dynamic ContentDynamic DispatchCreating resources that are both renderable and have childrenRedirectsHandling POST RequestsA Minimal POST ExampleAsynchronous ResponsesMore Practice and Next Steps
Basic HTTP Resource RetrievalPrinting a Web ResourceDownloading a Web ResourceAgentRequesting Resources with AgentRetrieving Response MetadataPOSTing Data with AgentMore Practice and Next Steps
The Twisted Application InfrastructureServicesApplicationsTAC FilestwistdPluginsMore twistd ExamplesMore Practice and Next StepsSuggested Exercises

Basic In-Application Loggingtwistd LoggingCustom LoggersKey Facts and Caveats About Logging
Nonblocking Database QueriesMore Practice and Next Steps
The Components of Twisted CredTwisted Cred: An ExampleCredentials CheckersAuthentication in Twisted ApplicationsMore Practice and Next Steps
ThreadsSubprocessesRunning a Subprocess and Getting the ResultCustom Process ProtocolsMore Practice and Next Steps
Writing and Running Twisted Unit Tests with TrialTesting ProtocolsTests and the ReactorTesting DeferredsTesting the Passage of TimeMore Practice and Next Steps
IRC ClientsIRC ServersMore Practice and Next Steps
SMTP Clients and ServersThe SMTP ProtocolSending Emails Using SMTPSMTP ServersStoring MailIMAP Clients and ServersIMAP ServersIMAP ClientsPOP3 Clients and ServersPOP3 ServersMore Practice and Next Steps
SSH ServersA Basic SSH ServerUsing Public Keys for AuthenticationProviding an Administrative Python ShellRunning Commands on a Remote ServerSSH ClientsMore Practice and Next Steps
Contributing to Twisted

Content preview from Twisted Network Programming Essentials, 2nd Edition

Chapter 9. Authentication

Twisted comes with a protocol-independent, pluggable, asynchronous authentication system called Cred that can be used to add any type of authentication support to your Twisted server. Twisted also ships with a variety of common authentication mechanisms that you can use off the shelf through this system.

Because it is a general and extensible system, there are a number of components to understand and use in even a basic example. Getting over the initial learning curve will pay off for using Cred in real-world systems, so stick with me through the terminology and these examples.

Let me state up front that this is not a chapter on cryptography or password management best practices. This chapter uses hashing examples that are short and convenient for describing the capabilities of Twisted Cred with minimal overhead; if you want more information on securely managing user data, please consult a resource dedicated to this topic like Secure Coding: Principles and Practices (O’Reilly).

The Components of Twisted Cred

Before we get into the usage examples, there are a few terms that you should familiarize yourself with:

Credentials: Information used to identify and authenticate a user. Common credentials are a username and password, but they can be any data or object used to prove a user’s identity, such as a certificate or challenge/response protocol. Objects that provide credentials implement twisted.cred.credentials.ICredentials.
Avatar: A business logic object in a server ...