Tornado-identity authentication framework

Others 2020-04-14 21:23:12 views: null

Tornado Identity Authentication Framework

"""
Tornado 中使用 RequestHandler.get_cookie()、RequestHandler.set_cookie() 可以对cookie进行读写操作。
"""
# 例子:
import tornado.web
session_id = 1

class MainHandler(tornado.web.RequestHandler):
	def get(self):
		if not self.get_cookie("session"):		# 判断 session 是否存在
			slef.set_cookie("session",str(session_id))   # 插入session 值
			session_id = session_id + 1
			self.write("your session got a new session!")
		else:
			self.write("your session was set!")

Website uses secure cookies

# tornado为用户提供了 Cookie信息加密的机制,使客户端无法随意的解析贺修改Cookie的键值
import tornado.web
import tornado,ioloop

session_id = 1

class MainHandler(tornado.web.RequestHandler):
	def get(self):
		global session_id		# 将session_id 声明为全局变量
		# 获取加密后的 Cookie
		if not self.get_secure_cookie("session"):
			self.set_secure_cookie("session",str(session_id))
			session_id = session_id + 1
			self.write("your session got a new session!")
		else:
			self.write("your session was set!")


# cookie_secret 参数 —— 指定 cookie加密时密钥
application = tornado.web.Application([
			(r"/",MainHandler),]cookie_secret = "SECRET_DONT_LEAK")


def main():
	application.listen(8888)
	tornado.ioloop.IOLoop.current().start()


if __name__ == "__main__":
	main()

User authentication

import tornado.web
import tornado,ioloo
import uuid		# uuid 生成库

dict_session = {}		# 定义字典、用于保存所有登陆的Session

# 定义公共基类 - 继承自 tornado.web.RequestHandler
class BaseHandler(tornado.web.RequestHandler):
	def get_current_user(self):
		session_id = self.get_secure_cookie("session_id")
	
	return dict_session.get(session_id)


class MainHandler(BaseHandler):
	@rotnado.web.authenticated
	def get(self):
		name = tornado.escape.xhtml_escape(self.current_user)
		self.write("Hello," + name)

class LoginHandler(BaseHandler):
	def get(self):
		self.write(
			'<html><body>'
			'<form action="/login" method="post">'
				'Name:<input type="text" name="name">'
				<input type="submit" value="Sign in">'
			'</form>'
			'</body></html>'
			
			</html>
		)
	
	def post(self):
		if len(self.get_argument("name"))<3:
			self.redirect("/login")
		sessoion_id = str(uuid.uuid1())
		dict_sessions[session_id] = self.get_argument("name")
		self.set_secure_cookie("session_id",session_id)
		self.redirect("/")

application = tornado.web.Application([
			(r"/",MainHandler),
			(r"/login",LoginHandler),
			]cookie_secret = "SECRET_DONT_LEAK")


def main():
	application.listen(8888)
	tornado.ioloop.IOLoop.current().start()


if __name__ == "__main__":
	main()
LCL-2019
Published 50 original articles · Likes3 · Visits 1797
Private letter concerns

Guess you like

Origin blog.csdn.net/weixin_43056654/article/details/105446418
Recommended
微软回应中国区AI团队“打包赴美”传闻
Ranking
How to use ChatGPT to write 100,000+ hot articles for public accounts (includes prompt words)
sudo echo command execution Permission denied
ADO: Using Transactions to Operate Oracle Database
[Java] [Class and Object] equals, hashCode, clone methods
Linux virtual host function
Порт управления rabbitmq открыт
on,where
jQuery WeUI
How can there be a weed pilot in Hangzhou?
tcp / ip model four
Daily
More
2024-05-15(5)
2024-05-14(9)
2024-05-13(8)
2024-05-12(28)
2024-05-11(32)
2024-05-10(34)
2024-05-09(32)
2024-05-08(18)
2024-05-07(34)
2024-05-06(6)

Code World

© 2018 codetd.com