Initial Commit -- implemented high-level creds API

Author: DirectXMan12

.gitignore

@@ -0,0 +1,13 @@
+.coverage
+*.egg-info
+*.egg
+*~
+*.pyc
+/build/
+*.swp
+*.swo
+*.so
+.tox
+dist
+gssapi/**/*.c
+docs/build

LICENSE.txt

@@ -0,0 +1,9 @@
+Copyright (c) 2013, Solly Ross
+All rights reserved.
+
+Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:
+
+* Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.
+* Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.
+
+THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

MANIFEST.in

@@ -0,0 +1,6 @@
+include *.txt
+recursive-include docs *.txt
+
+recursive-include sys_src *.h
+
+recursive-include gssapi *.pxd

README.rst

@@ -0,0 +1 @@
+./README.txt

README.txt

@@ -0,0 +1,169 @@
+========
+PyGSSAPI
+========
+
+.. role:: python(code)
+   :language: python
+
+.. role:: bash(code)
+   :language: bash
+
+PyGSSAPI provides both low-level and high level wrappers around the GSSAPI
+C libraries.  While it focuses on the Kerberos mechanism, it should also be
+useable with other GSSAPI mechanisms that do not rely on mechanism-specific
+C values that cannot easily be translated into Python.
+
+Requirements
+============
+
+* A working implementation of GSSAPI (such as from MIT Kerberos)
+  which includes header files
+
+* a C compiler (such as GCC)
+
+* Cython (*NEW*, to compile from scratch)
+
+* the `flufl.enum` Python package
+
+* the `nose` package (for tests)
+
+* the `shouldbe` package (for tests)
+
+Installation
+============
+
+Easy Way 
+--------
+
+.. code-block:: bash
+
+    $ pip install pygssapi
+
+From the Git Repo
+-----------------
+
+.. code-block:: bash
+
+    $ git clone https://github.com/DirectXMan12/python-gssapi.git
+    $ python setup.py build
+    $ python setup.py install
+
+Tests
+=====
+
+I have written some tests of PyGSSAPI; they live in the `gssapi.tests`
+directory.  Currently the basic :python:`gssapi.raw` commands and
+:python:`gssapi.client.BasicGSSClient` have been tested.  Before running
+the tests, a valid 'host/[FQDN]' (e.g. 'host/some.domain') must have been
+:bash:`kinit`-ed.  If you run :bash:`tox`, it will do this for you (you will
+likely need to run :bash:`tox` with :bash:`sudo`).
+
+.. code-block:: bash
+
+   $ sudo tox
+
+or 
+
+.. code-block:: bash
+   
+   $ sudo kinit host/some.domain -k
+   $ sudo setup.py nosetests
+
+Structure
+=========
+
+PyGSSAPI is composed of two parts: the low-level, C-style wrapper and the
+high-level, Python-style wrapper (which is a wrapper around the low-level
+API).  Modules written in C are denoted by '(C)', whereas those written
+in Python are denoted '(Py)'
+
+Low-Level API
+-------------
+
+The low-level API lives in `gssapi.raw`.  The methods contained therein
+are designed to match closely with the original GSSAPI C methods.  They
+follow the given format:
+
+* Names are camelCased versions of the C method names, with the 
+  :python:`gssapi_` prefix removed
+
+* Parameters which use C int constants as enums have 
+  :python:`flufl.enum.IntEnum` classes defined, and thus may be passed
+  either the enum members or integers
+
+* In cases where a specific constant is passed in the C API to represent
+  a default value, :python:`None` should be passed instead
+
+* In cases where non-integer C constants are passed, `flufl.enum.Enum`
+  classes are defined for common values
+
+* Major and minor error codes are returned via :python:`gssapi.raw.GSSError`
+
+* All other relevant output values are returned in a tuple in the return
+  value of the method (in cases where a non-error major status code may
+  be returned, an additional member of the tuple is provided)
+
+Structure
+~~~~~~~~~
+
+gssapi : /
+    base : /
+        *includes all sub-packages automatically*
+
+        impl : (C)
+            core C-API methods
+        status_utils : (C)
+            utilities for dealing with status codes
+        types : (Py)
+            Enumerations and Exception Types
+
+Examples
+~~~~~~~~
+
+.. code-block:: python
+
+    import gssapi.raw as gb
+
+TODO(sross): provide more examples
+
+High-Level API
+--------------
+
+The high-level API lives directly under :python:`gssapi`.  The classes 
+contained in each file are designed to provide a more Python, Object-Oriented
+view of GSSAPI.  Currently, they are designed for the basic GSSAPI tasks, but
+will be expanded upon in the future.
+
+Structure
+~~~~~~~~~
+
+gssapi : /
+    client : (Py)
+        *basic clients*
+
+        BasicGSSClient
+            a client capable of performing basic GSS negotiation/encryption
+        BasicSASLGSSClient
+            a helper class to simplify working with SASL GSSAPI
+    type_wrappers : (Py)
+        provides useful wrappers around some Python capsule objects
+
+Examples
+~~~~~~~~
+
+.. code-block:: python
+
+    import gssapi.client as gss
+    
+    client = gss.BasicGSSClient('vnc@some.host', security_type='encrypted')
+
+    init_token = client.setupBaseSecurityContext()
+    # send to server, get response back...
+    next_token = client.updateSecurityContext(server_resp)
+    # encrypt a message
+    msg_enc = client.encrypt('WARNING: this is secret')
+    # send the message, get response back...
+    msg_unenc = client.decrypt(server_encrypted_message)
+
+    # freeing of resources (such as deleting the security context and releasing
+    # the names) is handled automatically

docs/Makefile

@@ -0,0 +1,177 @@
+# Makefile for Sphinx documentation
+#
+
+# You can set these variables from the command line.
+SPHINXOPTS    =
+SPHINXBUILD   = sphinx-build
+PAPER         =
+BUILDDIR      = build
+
+# User-friendly check for sphinx-build
+ifeq ($(shell which $(SPHINXBUILD) >/dev/null 2>&1; echo $$?), 1)
+$(error The '$(SPHINXBUILD)' command was not found. Make sure you have Sphinx installed, then set the SPHINXBUILD environment variable to point to the full path of the '$(SPHINXBUILD)' executable. Alternatively you can add the directory with the executable to your PATH. If you don't have Sphinx installed, grab it from http://sphinx-doc.org/)
+endif
+
+# Internal variables.
+PAPEROPT_a4     = -D latex_paper_size=a4
+PAPEROPT_letter = -D latex_paper_size=letter
+ALLSPHINXOPTS   = -d $(BUILDDIR)/doctrees $(PAPEROPT_$(PAPER)) $(SPHINXOPTS) source
+# the i18n builder cannot share the environment and doctrees with the others
+I18NSPHINXOPTS  = $(PAPEROPT_$(PAPER)) $(SPHINXOPTS) source
+
+.PHONY: help clean html dirhtml singlehtml pickle json htmlhelp qthelp devhelp epub latex latexpdf text man changes linkcheck doctest gettext
+
+help:
+	@echo "Please use \`make <target>' where <target> is one of"
+	@echo "  html       to make standalone HTML files"
+	@echo "  dirhtml    to make HTML files named index.html in directories"
+	@echo "  singlehtml to make a single large HTML file"
+	@echo "  pickle     to make pickle files"
+	@echo "  json       to make JSON files"
+	@echo "  htmlhelp   to make HTML files and a HTML help project"
+	@echo "  qthelp     to make HTML files and a qthelp project"
+	@echo "  devhelp    to make HTML files and a Devhelp project"
+	@echo "  epub       to make an epub"
+	@echo "  latex      to make LaTeX files, you can set PAPER=a4 or PAPER=letter"
+	@echo "  latexpdf   to make LaTeX files and run them through pdflatex"
+	@echo "  latexpdfja to make LaTeX files and run them through platex/dvipdfmx"
+	@echo "  text       to make text files"
+	@echo "  man        to make manual pages"
+	@echo "  texinfo    to make Texinfo files"
+	@echo "  info       to make Texinfo files and run them through makeinfo"
+	@echo "  gettext    to make PO message catalogs"
+	@echo "  changes    to make an overview of all changed/added/deprecated items"
+	@echo "  xml        to make Docutils-native XML files"
+	@echo "  pseudoxml  to make pseudoxml-XML files for display purposes"
+	@echo "  linkcheck  to check all external links for integrity"
+	@echo "  doctest    to run all doctests embedded in the documentation (if enabled)"
+
+clean:
+	rm -rf $(BUILDDIR)/*
+
+html:
+	$(SPHINXBUILD) -b html $(ALLSPHINXOPTS) $(BUILDDIR)/html
+	@echo
+	@echo "Build finished. The HTML pages are in $(BUILDDIR)/html."
+
+dirhtml:
+	$(SPHINXBUILD) -b dirhtml $(ALLSPHINXOPTS) $(BUILDDIR)/dirhtml
+	@echo
+	@echo "Build finished. The HTML pages are in $(BUILDDIR)/dirhtml."
+
+singlehtml:
+	$(SPHINXBUILD) -b singlehtml $(ALLSPHINXOPTS) $(BUILDDIR)/singlehtml
+	@echo
+	@echo "Build finished. The HTML page is in $(BUILDDIR)/singlehtml."
+
+pickle:
+	$(SPHINXBUILD) -b pickle $(ALLSPHINXOPTS) $(BUILDDIR)/pickle
+	@echo
+	@echo "Build finished; now you can process the pickle files."
+
+json:
+	$(SPHINXBUILD) -b json $(ALLSPHINXOPTS) $(BUILDDIR)/json
+	@echo
+	@echo "Build finished; now you can process the JSON files."
+
+htmlhelp:
+	$(SPHINXBUILD) -b htmlhelp $(ALLSPHINXOPTS) $(BUILDDIR)/htmlhelp
+	@echo
+	@echo "Build finished; now you can run HTML Help Workshop with the" \
+	      ".hhp project file in $(BUILDDIR)/htmlhelp."
+
+qthelp:
+	$(SPHINXBUILD) -b qthelp $(ALLSPHINXOPTS) $(BUILDDIR)/qthelp
+	@echo
+	@echo "Build finished; now you can run "qcollectiongenerator" with the" \
+	      ".qhcp project file in $(BUILDDIR)/qthelp, like this:"
+	@echo "# qcollectiongenerator $(BUILDDIR)/qthelp/PyGSSAPI.qhcp"
+	@echo "To view the help file:"
+	@echo "# assistant -collectionFile $(BUILDDIR)/qthelp/PyGSSAPI.qhc"
+
+devhelp:
+	$(SPHINXBUILD) -b devhelp $(ALLSPHINXOPTS) $(BUILDDIR)/devhelp
+	@echo
+	@echo "Build finished."
+	@echo "To view the help file:"
+	@echo "# mkdir -p $$HOME/.local/share/devhelp/PyGSSAPI"
+	@echo "# ln -s $(BUILDDIR)/devhelp $$HOME/.local/share/devhelp/PyGSSAPI"
+	@echo "# devhelp"
+
+epub:
+	$(SPHINXBUILD) -b epub $(ALLSPHINXOPTS) $(BUILDDIR)/epub
+	@echo
+	@echo "Build finished. The epub file is in $(BUILDDIR)/epub."
+
+latex:
+	$(SPHINXBUILD) -b latex $(ALLSPHINXOPTS) $(BUILDDIR)/latex
+	@echo
+	@echo "Build finished; the LaTeX files are in $(BUILDDIR)/latex."
+	@echo "Run \`make' in that directory to run these through (pdf)latex" \
+	      "(use \`make latexpdf' here to do that automatically)."
+
+latexpdf:
+	$(SPHINXBUILD) -b latex $(ALLSPHINXOPTS) $(BUILDDIR)/latex
+	@echo "Running LaTeX files through pdflatex..."
+	$(MAKE) -C $(BUILDDIR)/latex all-pdf
+	@echo "pdflatex finished; the PDF files are in $(BUILDDIR)/latex."
+
+latexpdfja:
+	$(SPHINXBUILD) -b latex $(ALLSPHINXOPTS) $(BUILDDIR)/latex
+	@echo "Running LaTeX files through platex and dvipdfmx..."
+	$(MAKE) -C $(BUILDDIR)/latex all-pdf-ja
+	@echo "pdflatex finished; the PDF files are in $(BUILDDIR)/latex."
+
+text:
+	$(SPHINXBUILD) -b text $(ALLSPHINXOPTS) $(BUILDDIR)/text
+	@echo
+	@echo "Build finished. The text files are in $(BUILDDIR)/text."
+
+man:
+	$(SPHINXBUILD) -b man $(ALLSPHINXOPTS) $(BUILDDIR)/man
+	@echo
+	@echo "Build finished. The manual pages are in $(BUILDDIR)/man."
+
+texinfo:
+	$(SPHINXBUILD) -b texinfo $(ALLSPHINXOPTS) $(BUILDDIR)/texinfo
+	@echo
+	@echo "Build finished. The Texinfo files are in $(BUILDDIR)/texinfo."
+	@echo "Run \`make' in that directory to run these through makeinfo" \
+	      "(use \`make info' here to do that automatically)."
+
+info:
+	$(SPHINXBUILD) -b texinfo $(ALLSPHINXOPTS) $(BUILDDIR)/texinfo
+	@echo "Running Texinfo files through makeinfo..."
+	make -C $(BUILDDIR)/texinfo info
+	@echo "makeinfo finished; the Info files are in $(BUILDDIR)/texinfo."
+
+gettext:
+	$(SPHINXBUILD) -b gettext $(I18NSPHINXOPTS) $(BUILDDIR)/locale
+	@echo
+	@echo "Build finished. The message catalogs are in $(BUILDDIR)/locale."
+
+changes:
+	$(SPHINXBUILD) -b changes $(ALLSPHINXOPTS) $(BUILDDIR)/changes
+	@echo
+	@echo "The overview file is in $(BUILDDIR)/changes."
+
+linkcheck:
+	$(SPHINXBUILD) -b linkcheck $(ALLSPHINXOPTS) $(BUILDDIR)/linkcheck
+	@echo
+	@echo "Link check complete; look for any errors in the above output " \
+	      "or in $(BUILDDIR)/linkcheck/output.txt."
+
+doctest:
+	$(SPHINXBUILD) -b doctest $(ALLSPHINXOPTS) $(BUILDDIR)/doctest
+	@echo "Testing of doctests in the sources finished, look at the " \
+	      "results in $(BUILDDIR)/doctest/output.txt."
+
+xml:
+	$(SPHINXBUILD) -b xml $(ALLSPHINXOPTS) $(BUILDDIR)/xml
+	@echo
+	@echo "Build finished. The XML files are in $(BUILDDIR)/xml."
+
+pseudoxml:
+	$(SPHINXBUILD) -b pseudoxml $(ALLSPHINXOPTS) $(BUILDDIR)/pseudoxml
+	@echo
+	@echo "Build finished. The pseudo-XML files are in $(BUILDDIR)/pseudoxml."