def _create_factory(self, create_paths=False, ignore=[]):
# Twisted (listening endpoint) transport factory
transport_factory = None
# Root Web service: only set (down below) when running a Web transport or
# a Universal transport with Web support
root_webservice = None
# standalone WAMP-RawSocket transport
#
if self._config['type'] == 'rawsocket':
transport_factory = WampRawSocketServerFactory(
self._worker.router_session_factory, self._config)
transport_factory.noisy = False
# standalone WAMP-WebSocket transport
#
elif self._config['type'] == 'websocket':
assert (self._templates)
transport_factory = WampWebSocketServerFactory(
self._worker.router_session_factory, self._cbdir, self._config,
self._templates)
transport_factory.noisy = False
# Flash-policy file server pseudo transport
#
elif self._config['type'] == 'flashpolicy':
transport_factory = FlashPolicyFactory(
self._config.get('allowed_domain', None),
self._config.get('allowed_ports', None))
# WebSocket testee pseudo transport
#
elif self._config['type'] == 'websocket.testee':
assert (self._templates)
transport_factory = WebSocketTesteeServerFactory(
self._config, self._templates)
# Stream testee pseudo transport
#
elif self._config['type'] == 'stream.testee':
transport_factory = StreamTesteeServerFactory()
# MQTT legacy adapter transport
#
elif self._config['type'] == 'mqtt':
transport_factory = WampMQTTServerFactory(
self._worker.router_session_factory, self._config,
self._worker._reactor)
transport_factory.noisy = False
# Twisted Web based transport
#
elif self._config['type'] == 'web':
assert (self._templates)
transport_factory, root_webservice = yield maybeDeferred(
self._create_web_factory, create_paths, ignore)
# Universal transport
#
elif self._config['type'] == 'universal':
if 'web' in self._config:
assert (self._templates)
web_factory, root_webservice = yield maybeDeferred(
self._create_web_factory, create_paths, ignore)
else:
web_factory, root_webservice = None, None
if 'rawsocket' in self._config:
rawsocket_factory = WampRawSocketServerFactory(
self._worker.router_session_factory,
self._config['rawsocket'])
rawsocket_factory.noisy = False
else:
rawsocket_factory = None
if 'mqtt' in self._config:
mqtt_factory = WampMQTTServerFactory(
self._worker.router_session_factory, self._config['mqtt'],
self._worker._reactor)
mqtt_factory.noisy = False
else:
mqtt_factory = None
if 'websocket' in self._config:
assert (self._templates)
websocket_factory_map = {}
for websocket_url_first_component, websocket_config in self._config[
'websocket'].items():
websocket_transport_factory = WampWebSocketServerFactory(
self._worker.router_session_factory, self._cbdir,
websocket_config, self._templates)
websocket_transport_factory.noisy = False
websocket_factory_map[
websocket_url_first_component] = websocket_transport_factory
self.log.debug(
'hooked up websocket factory on request URI {request_uri}',
request_uri=websocket_url_first_component)
else:
websocket_factory_map = None
transport_factory = UniSocketServerFactory(web_factory,
websocket_factory_map,
rawsocket_factory,
mqtt_factory)
# this is to allow subclasses to reuse this method
elif self._config['type'] in ignore:
pass
# unknown transport type
else:
# should not arrive here, since we did check_transport() in the beginning
raise Exception("logic error")
returnValue((transport_factory, root_webservice))
def build_mqtt_server():
reactor = Clock()
router_factory, server_factory, session_factory = make_router()
add_realm_to_router(router_factory, session_factory)
router = add_realm_to_router(router_factory,
session_factory,
realm_name=u'mqtt',
realm_options={})
# allow everything
default_permissions = {
u'uri': u'',
u'match': u'prefix',
u'allow': {
u'call': True,
u'register': True,
u'publish': True,
u'subscribe': True
}
}
router.add_role(RouterRoleStaticAuth(router, u'mqttrole', default_permissions=default_permissions))
class AuthenticatorSession(ApplicationSession):
@inlineCallbacks
def onJoin(self, details):
def authenticate(realm, authid, details):
if authid == u"test123":
if details["ticket"] != u'password':
raise ApplicationError(u'com.example.invalid_ticket', u'nope')
res = {
u'realm': u'mqtt',
u'role': u'mqttrole',
u'extra': {}
}
return res
else:
raise ApplicationError(u'com.example.no_such_user', u'nah')
yield self.register(authenticate, u'com.example.auth')
def tls(realm, authid, details):
ACCEPTED_CERTS = set([u'95:1C:A9:6B:CD:8D:D2:BD:F4:73:82:01:55:89:41:12:9C:F8:AF:8E'])
if 'client_cert' not in details['transport'] or not details['transport']['client_cert']:
raise ApplicationError(u"com.example.no_cert", u"no client certificate presented")
client_cert = details['transport']['client_cert']
sha1 = client_cert['sha1']
subject_cn = client_cert['subject']['cn']
if sha1 not in ACCEPTED_CERTS:
raise ApplicationError(u"com.example.invalid_cert", u"certificate with SHA1 {} denied".format(sha1))
else:
return {
u'authid': subject_cn,
u'role': u'mqttrole',
u'realm': u'mqtt'
}
yield self.register(tls, u'com.example.tls')
config = ComponentConfig(u"default", {})
authsession = AuthenticatorSession(config)
session_factory.add(authsession, router, authrole=u"trusted")
options = {
u"options": {
u"realm": u"mqtt",
u"role": u"mqttrole",
u"payload_mapping": {
u"": {
u"type": u"native",
u"serializer": u"json"
}
},
u"auth": {
u"ticket": {
u"type": u"dynamic",
u"authenticator": u"com.example.auth",
u"authenticator-realm": u"default",
},
u"tls": {
u"type": u"dynamic",
u"authenticator": u"com.example.tls",
u"authenticator-realm": u"default",
}
}
}
}
mqtt_factory = WampMQTTServerFactory(session_factory, options, reactor)
server_factory._mqtt_factory = mqtt_factory
return reactor, router, server_factory, session_factory
def _create_factory(self, create_paths=False, ignore=[]):
# Twisted (listening endpoint) transport factory
transport_factory = None
# Root Web service: only set (down below) when running a Web transport or
# a Universal transport with Web support
root_webservice = None
# standalone WAMP-RawSocket transport
#
if self._config['type'] == 'rawsocket':
transport_factory = WampRawSocketServerFactory(self._worker.router_session_factory, self._config)
transport_factory.noisy = False
# standalone WAMP-WebSocket transport
#
elif self._config['type'] == 'websocket':
assert (self._templates)
transport_factory = WampWebSocketServerFactory(self._worker.router_session_factory, self._cbdir, self._config,
self._templates)
transport_factory.noisy = False
# Flash-policy file server pseudo transport
#
elif self._config['type'] == 'flashpolicy':
transport_factory = FlashPolicyFactory(self._config.get('allowed_domain', None),
self._config.get('allowed_ports', None))
# WebSocket testee pseudo transport
#
elif self._config['type'] == 'websocket.testee':
assert (self._templates)
transport_factory = WebSocketTesteeServerFactory(self._config, self._templates)
# Stream testee pseudo transport
#
elif self._config['type'] == 'stream.testee':
transport_factory = StreamTesteeServerFactory()
# MQTT legacy adapter transport
#
elif self._config['type'] == 'mqtt':
transport_factory = WampMQTTServerFactory(
self._worker.router_session_factory, self._config, self._worker._reactor)
transport_factory.noisy = False
# Twisted Web based transport
#
elif self._config['type'] == 'web':
assert (self._templates)
transport_factory, root_webservice = self._create_web_factory(create_paths, ignore)
# Universal transport
#
elif self._config['type'] == 'universal':
if 'web' in self._config:
assert (self._templates)
web_factory, root_webservice = self._create_web_factory(create_paths, ignore)
else:
web_factory, root_webservice = None, None
if 'rawsocket' in self._config:
rawsocket_factory = WampRawSocketServerFactory(self._worker.router_session_factory, self._config['rawsocket'])
rawsocket_factory.noisy = False
else:
rawsocket_factory = None
if 'mqtt' in self._config:
mqtt_factory = WampMQTTServerFactory(
self._worker.router_session_factory, self._config['mqtt'], self._worker._reactor)
mqtt_factory.noisy = False
else:
mqtt_factory = None
if 'websocket' in self._config:
assert (self._templates)
websocket_factory_map = {}
for websocket_url_first_component, websocket_config in self._config['websocket'].items():
websocket_transport_factory = WampWebSocketServerFactory(self._worker.router_session_factory, self._cbdir,
websocket_config, self._templates)
websocket_transport_factory.noisy = False
websocket_factory_map[websocket_url_first_component] = websocket_transport_factory
self.log.debug('hooked up websocket factory on request URI {request_uri}',
request_uri=websocket_url_first_component)
else:
websocket_factory_map = None
transport_factory = UniSocketServerFactory(web_factory,
websocket_factory_map,
rawsocket_factory,
mqtt_factory)
# this is to allow subclasses to reuse this method
elif self._config['type'] in ignore:
pass
# unknown transport type
else:
# should not arrive here, since we did check_transport() in the beginning
raise Exception("logic error")
return transport_factory, root_webservice
