def load(self, configuration):
conf_path = pkg_resources.resource_filename(
anchore_engine.__name__, 'conf/internal_authz_yosai_settings.yaml')
self.yosai = Yosai(file_path=conf_path)
# Disable sessions, since the APIs are not session-based
self.yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False
def load(self, configuration):
with DbAuthorizationHandler._config_lock:
conf_path = pkg_resources.resource_filename(
anchore_engine.__name__, 'conf/default_yosai_settings.yaml')
DbAuthorizationHandler._yosai = Yosai(file_path=conf_path)
# Disable sessions, since the APIs are not session-based
DbAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False
def load(self, configuration):
with ExternalAuthorizationHandler._config_lock:
conf_path = pkg_resources.resource_filename(anchore_engine.__name__, 'conf/external_authz_yosai_settings.yaml')
ExternalAuthorizationHandler._yosai = Yosai(file_path=conf_path)
# Disable sessions, since the APIs are not session-based
ExternalAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False
logger.info('Initializing external authz realm')
ExternalAuthzRealm.init_realm(configuration, account_lookup_fn=lookup_account_type_from_identity)
logger.info('External authz handler init complete')
def load(self, configuration):
with DbAuthorizationHandler._config_lock:
conf_path = pkg_resources.resource_filename(
anchore_engine.__name__, "conf/default_yosai_settings.yaml"
)
DbAuthorizationHandler._yosai = Yosai(file_path=conf_path)
# Disable sessions, since the APIs are not session-based
DbAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = (
False
)
token_info[JwtToken] = {"tier": 1, "cred_type": "jwt"}
def load(self, configuration):
with ExternalAuthorizationHandler._config_lock:
logger.info('Initializing external authz realm')
self.__external_authorizer__ = ExternalAuthorizer(configuration, enabled=True)
UsernamePasswordRealm.__external_authorizer__ = self.__external_authorizer__
#conf_path = pkg_resources.resource_filename(anchore_engine.__name__, 'conf/external_authz_yosai_settings.yaml')
conf_path = pkg_resources.resource_filename(anchore_engine.__name__, 'conf/default_yosai_settings.yaml')
ExternalAuthorizationHandler._yosai = Yosai(file_path=conf_path)
# Disable sessions, since the APIs are not session-based
ExternalAuthorizationHandler._yosai.security_manager.subject_store.session_storage_evaluator.session_storage_enabled = False
token_info[JwtToken] = {'tier': 1, 'cred_type': 'jwt'}
logger.info('External authz handler init complete')
def yosai(session_attributes):
return Yosai(env_var='YOSAI_CORE_SETTINGS',
session_attributes=session_attributes)
session.set_attribute('shopping_cart', shopping_cart)
@staticmethod
def remove_item(session, item):
shopping_cart = session.get_attribute('shopping_cart')
if shopping_cart:
shopping_cart.remove_item(item)
session.set_attribute('shopping_cart', shopping_cart)
if __name__ == '__main__':
from yosai.core import Yosai
yosai = Yosai(env_var='YOSAI_SETTINGS',
session_attributes=[ShoppingCart])
with Yosai.context(yosai):
cart = ShoppingCartSessionManager
with Yosai.context(yosai):
subject = Yosai.get_current_subject()
session = subject.get_session()
print('Initial Cart Contents: ', cart.list_items(session))
# ------------------------------------------------------------------------
# Operation 1
# ------------------------------------------------------------------------