https - How to debug Django app that runs on top of TLS/SSL? -


What is the best way to debug a dynamic app running on TGL / SSL?

Background:

I have a Django web app that uses the X.509 client side certificate for authentication. While running under Apache, my app can only access HTTPS. Clients that join the app provide a client-side certificate that accepts Apache and then adds an app to an enabled variable. The app parses the certificate and provides access-controlled content.

So far, I have been debugging the app under regular HTTP as well as "./manage.py runerver". I've simulated an HTTPS connection using Custom View Handler Middleware, which is in Debug Mode. See Handler adds information to the request, similar to information that will be parsed with the actual client side certificate run under HTTPS.

This would be very easy for me to debug, if I can debug the actual client side certificates that provide clients when connecting via HTTPS.

We use nginx in front of the DNS client certificate check NGINX SSM termination, client authenticate verification , And checks against the revocation list. The customer certificate fields are passed in the header variables until the Django app.

Then our django app cert does not receive, it only looks at the header variable. I think the same mechanism applies to Apache

To reach customers to the development server (such as './manage.py' driver), we have a special case for the customer. Example of a Python client: 

  if (protozo == "https"): conn = http.client.HTTPSConnection ("cert." + + Webhost + ":" + port, key_file = Certfile, Cert_file = certfile) header = {} other: fake clients for # local connections. As it will come # of nginx Conn = http.client.HTTPConnection, pass the certificate information in the header (webhost + ":" + port) "header = {'X_SSL_CLIENT_S_DN': '/ C = America / Scheduled = California / O = 'YYYY / CN = ZZZZ', 'X_SSL_CLIENT_I_DN': '/ C = America / Scheduled = California / O = xxxx / CN = wwww', 'X_SSL_CLIENT_SERIAL': hex (serialnum), 'USER_AGENT': "Testing customer user agent ",} For Unit Tests, we do the same thing using the Django Test client:  
 Django.test.client Import Client from  to self.client = Client () Response = self.client.get (URL, Data, ** {'HTTP_X_SSL_CLIENT_S_DN': '/ C = America / Scheduled Tribes = California / O = 'Test client user agent': 'HTTP_X_SSL_CLIENT_I_DN': '/ c = America / Scheduled = California / O = ,})

Comments

Post a Comment

Popular posts from this blog

Python SQLAlchemy:AttributeError: Neither 'Column' object nor 'Comparator' object has an attribute 'schema' -

I tried to create a new database in my project, but when I run the script, I get this error, I have another project, this type of definition worked before, but now it gets a single error. I am using Python 2.7.8 and the version of SQLAlchemy module is 0.9.8. By the way, using a project flask- SQLAlchemy, it works well, I'm confused. Traceback information is as follows: Traceback (most recent call final): File "D: / Projects / IOM / db_create.py", line 4, & lt; Module & gt; From the models the base file "D: \ Projects \ OO-IM \ models.py", in line 15, in the & lt; Module & gt; Column ( 'followed_id', int (), ForeignKey ( 'user.id')) file "C: \ Python27 \ lib \ site-packages \ SQLAlchemy \ SQL \ schema.py", line 369, __new__ schema = metadata. Schema file "C: \ Python27 \ lib \ site-packages \ SQLAlchemy \ SQL \ elements.py", line 662, AttributeError in __getattr__ key): Neither 'column' object nor ...
Read more

java - How not to audit a join table and related entities using Hibernate Envers? -

I use Eners to be hibernate to audit my institutions. I have an audit entity, Foo , which includes a list & lt; Bars & gt; However, I do not want to audit the bar institutions, in the form of properties, I have written that: @inti @edicated public class Foo {@JoinTable (name = "T_FOO_BAR", joinColumns = @JoinColumn (name = "FOO_ID"), inverseJoinColumns = @JoinColumn (Name = "BAR_ID")) @ManyToMany (Cascade = Persist) @ Indited (targetAuditMode = RelationTargetAuditMode.NOT_AUDITED ) Public listing & lt; Bars & gt; GetBars () {Return bars; }} Now, I want to retrieve an amendment of foo : AuditReader reader = AuditReaderFactory.get (GetEntityManager ()); FU modification = (FU) reader.CreativeTeA () .entensEtrevision (Foo Class, 42) .getSingleResult (); Unfortunately, when I want to retrieve all the data (i.e. when it loads lazy times ), error me ORA-00942: table or view is not present , because Tried to query this: Sel...
Read more

mongodb - CakePHP paginator ignoring order, but only for certain values -

While pagging my user model in kppp, I can sort with some values, but not others. For example, I can order results from created or email , for example, but username or reputation seems to come back order by arbitrary command for example with a list of users: $ this-> paginate = array ('condition' => array ( 'User.is_active' = & gt; true), 'border' => 24, 'order' => array ('User.created' => DESC)); Works as expected, but $ this - & gt; Paged = array ('conditions' = & gt; array (' user.isIactive '= & gt; true),' border '= & gt; 24,' command '= & gt; array (' user repeats' = ' & Gt; DESC ')); No, no. I first thought that this could be a database issue, but when I search the database directly, sorted as expected. Note: I am using Mangodebi with the Mongo DB plugin of Ichikawa for the KPPHP; Pagnetizing users are used to work properl...
Read more