def verify(self, data, sig):
"""Verify a signature for a block of data"""
# pylint: disable=no-self-use,unused-argument
if sig == b'fail':
raise SSPIError('Signature verification error')
def authorize(self, token):
"""Perform next step in SSPI authentication"""
if self._error:
self._error = False
raise SSPIError('Token authentication errror')
new_token, complete = step(self._host, token)
if complete:
self._complete = True
if new_token in (b'error', b'errtok'):
if token:
raise SSPIError('Token authentication errror')
else:
self._error = True
return True, [SSPIBuffer(b'')]
else:
return bool(new_token), [SSPIBuffer(new_token)]
def __init__(self, _package=None, spn=None, targetspn=None, scflags=None):
host = spn or targetspn
if 'init_error' in host:
raise SSPIError('Authentication initialization error')
if targetspn and 'no_client_integrity' in host:
scflags &= ~ISC_RET_INTEGRITY
elif spn and 'no_server_integrity' in host:
scflags &= ~ASC_RET_INTEGRITY
self._host = host[5:]
self._flags = scflags
self._ctxt = SSPIContext()
self._complete = False
self._error = False