def load(self, configuration): conf_path = pkg_resources.resource_filename( anchore_engine.__name__, 'conf/internal_authz_yosai_settings.yaml') self.yosai = Yosai(file_path=conf_path) # Disable sessions, since the APIs are not session-based self.yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False
def load(self, configuration): with DbAuthorizationHandler._config_lock: conf_path = pkg_resources.resource_filename( anchore_engine.__name__, 'conf/default_yosai_settings.yaml') DbAuthorizationHandler._yosai = Yosai(file_path=conf_path) # Disable sessions, since the APIs are not session-based DbAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False
def load(self, configuration): with ExternalAuthorizationHandler._config_lock: conf_path = pkg_resources.resource_filename(anchore_engine.__name__, 'conf/external_authz_yosai_settings.yaml') ExternalAuthorizationHandler._yosai = Yosai(file_path=conf_path) # Disable sessions, since the APIs are not session-based ExternalAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False logger.info('Initializing external authz realm') ExternalAuthzRealm.init_realm(configuration, account_lookup_fn=lookup_account_type_from_identity) logger.info('External authz handler init complete')
def load(self, configuration): with DbAuthorizationHandler._config_lock: conf_path = pkg_resources.resource_filename( anchore_engine.__name__, "conf/default_yosai_settings.yaml" ) DbAuthorizationHandler._yosai = Yosai(file_path=conf_path) # Disable sessions, since the APIs are not session-based DbAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = ( False ) token_info[JwtToken] = {"tier": 1, "cred_type": "jwt"}
def load(self, configuration): with ExternalAuthorizationHandler._config_lock: logger.info('Initializing external authz realm') self.__external_authorizer__ = ExternalAuthorizer(configuration, enabled=True) UsernamePasswordRealm.__external_authorizer__ = self.__external_authorizer__ #conf_path = pkg_resources.resource_filename(anchore_engine.__name__, 'conf/external_authz_yosai_settings.yaml') conf_path = pkg_resources.resource_filename(anchore_engine.__name__, 'conf/default_yosai_settings.yaml') ExternalAuthorizationHandler._yosai = Yosai(file_path=conf_path) # Disable sessions, since the APIs are not session-based ExternalAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False token_info[JwtToken] = {'tier': 1, 'cred_type': 'jwt'} logger.info('External authz handler init complete')
def yosai(session_attributes): return Yosai(env_var='YOSAI_CORE_SETTINGS', session_attributes=session_attributes)
session.set_attribute('shopping_cart', shopping_cart) @staticmethod def remove_item(session, item): shopping_cart = session.get_attribute('shopping_cart') if shopping_cart: shopping_cart.remove_item(item) session.set_attribute('shopping_cart', shopping_cart) if __name__ == '__main__': from yosai.core import Yosai yosai = Yosai(env_var='YOSAI_SETTINGS', session_attributes=[ShoppingCart]) with Yosai.context(yosai): cart = ShoppingCartSessionManager with Yosai.context(yosai): subject = Yosai.get_current_subject() session = subject.get_session() print('Initial Cart Contents: ', cart.list_items(session)) # ------------------------------------------------------------------------ # Operation 1 # ------------------------------------------------------------------------