sec-wall-dev team mailing list archive

Thread
Date

sec-wall 1.1 / A feature packed security proxy

To: python-announce-list@xxxxxxxxxx, soap@xxxxxxxxxx, sec-wall-dev@xxxxxxxxxxxxxxxxxxx, sec-wall-users@xxxxxxxxxxxxxxxxxxx
From: Dariusz Suchojad <dsuch@xxxxxxxxx>
Date: Wed, 29 Feb 2012 20:34:13 +0100
User-agent: Mozilla/5.0 (X11; Linux i686 on x86_64; rv:10.0.2) Gecko/20120216 Firefox/10.0.2 SeaMonkey/2.7.2


Hello,

the version 1.1 of sec-wall has just been released.

Notable changes
---------------

- Added an 'ssl-wrap-only' option for terminating SSL without requiringclients to provide any authentication information

- Simplified access to sec-wall's internals from other Python packagesso various authentication methods can be directly imported from Python code



What is sec-wall?
-----------------
sec-wall is a feature packed security proxy.

sec-wall has many interesting features, including support for SSL/TLS,WS-Security, HTTP Auth Basic/Digest, extensible authentication schemesbased on custom HTTP headers and XPath expressions, powerful URLmatching/rewriting and an optional headers enrichment.

sec-wall uses and is built on top of several fantastic Python opensource technologies, such as gevent, Spring Python, pesto, lxml, zdaemonor PyYAML and is meant to be highly customizable and easy to use. Goodperformance, tests, documentation and building an awesome community areat the very heart of the project.

Here's an example showing how little is needed to secure a backendserver with HTTP Basic Auth.


# ######################################################

# -*- coding: utf-8 -*-

# stdlib
import uuid

# Don't share it with anyone.
INSTANCE_SECRET = '5bf4e78c256746eda2ce3e0e73f256d0'

# May be shared with the outside world.
INSTANCE_UNIQUE = uuid.uuid4().hex

def default():
    return {
        'basic-auth':True,
        'basic-auth-username':'MyUser',
        'basic-auth-password':'MySecret',
        'basic-auth-realm':'Secure area',
        'host': 'http://example.com'
    }

urls = [
    ('/*', default()),
]

# ######################################################

Links
-----

Project's homepage: http://sec-wall.gefira.pl/

Getting started:http://sec-wall.gefira.pl/documentation/getting-started/index.htmlUsage examples:http://sec-wall.gefira.pl/documentation/usage-examples/index.html

Twitter: https://twitter.com/fourthrealm
Blog: http://www.gefira.pl/blog
IRC: #sec-wall channel on Freenode network

cheers,

--
Dariusz Suchojad