Initial Version

Shane R. Spencer · Shane R. Spencer · commit dae676f85dcc · 2013-05-07T20:36:37.000Z
diff --git a/COPYING b/COPYING
@@ -0,0 +1,19 @@
+Copyright (c) 2013  Shane R. Spencer
+
+Permission is hereby granted, free of charge, to any person obtaining a copy of
+this software and associated documentation files (the "Software"), to deal in
+the Software without restriction, including without limitation the rights to
+use, copy, modify, merge, publish, distribute, sublicense, and/or sell copies
+of the Software, and to permit persons to whom the Software is furnished to do
+so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.
diff --git a/MANIFEST.in b/MANIFEST.in
@@ -0,0 +1 @@
+include *.md
diff --git a/setup.py b/setup.py
@@ -0,0 +1,38 @@
+#!/usr/bin/env python
+# -*- coding: utf-8 -*-
+
+from setuptools import setup, find_packages
+
+import tornadoencookie
+
+with open('README.md') as stream:
+  long_desc = stream.read()
+
+setup(
+    name = tornadoencookie.__name__,
+    version = tornadoencookie.__version__,
+    author = tornadoencookie.__author__,
+    author_email = tornadoencookie.__email__,
+    packages = ['tornadoencookie'],
+    license = tornadoencookie.__license__,
+    description = tornadoencookie.__description__,
+    url='https://github.com/whardier/tornado-encookie',
+    long_description = long_desc,
+    install_requires=[
+        'tornado',
+        'pycrypto',
+    ],
+    classifiers = [
+        'Programming Language :: Python',
+        'Operating System :: OS Independent',
+        'Development Status :: 1 - Planning',
+        'Environment :: Plugins',
+        'Framework :: Tornado',
+        'Intended Audience :: Developers',
+        'Intended Audience :: Information Technology',
+        'License :: OSI Approved :: MIT License',
+        'Natural Language :: English',
+        'Topic :: Internet :: WWW/HTTP :: Session',
+    ],
+)
+
diff --git a/tornadoencookie/__init__.py b/tornadoencookie/__init__.py
@@ -0,0 +1,15 @@
+#!/usr/bin/env python
+# -*- coding: UTF-8 -*-
+
+"""tornado-encookie"""
+
+__name__ = "tornadoencookie"
+__author__ = 'Shane R. Spencer'
+__email__ = "shane@bogomip.com"
+__license__ = 'None'
+__copyright__ = '2013 Shane R. Spencer'
+__version__ = '0.0.1'
+__status__ = "Prototype"
+__description__ = "Encrypted cookie support for the Tornado Web Framework"
+
+
diff --git a/tornadoencookie/encookie.py b/tornadoencookie/encookie.py
@@ -0,0 +1,73 @@
+from Crypto.Cipher import AES
+import base64
+
+class EncookieManager(object):
+
+    BLOCK_SIZE = 32
+    PADDING = '\0'
+
+    def __init__(self, handler):
+        self.handler = handler
+        self.secret = ''
+        self.__setup_encookie()
+
+    def __setup_encookie(self):
+        self.__setup_settings()
+        self.cipher = AES.new(self.secret)
+
+    def __setup_settings(self):
+        self.handler.require_setting("encookie_secret", "encrypted cookies")
+        self.secret = self.handler.settings.get('encookie_secret')
+
+    def _pad(self, value):
+        return value + (self.BLOCK_SIZE - len(value) % self.BLOCK_SIZE) * self.PADDING
+
+    def _encrypt(self, value):
+        return base64.b64encode(self.cipher.encrypt(self._pad(value))).decode('utf-8')
+
+    def _decrypt(self, value):
+        return self.cipher.decrypt(base64.b64decode(value.encode('utf-8'))).decode('utf-8').rstrip(self.PADDING)
+
+    def get_cookie(self, name, default=None):
+        encrypted_value = self.handler.get_cookie(name)
+        if not encrypted_value:
+            return default
+        return self._decrypt(encrypted_value)
+
+    def set_cookie(self, name, value, domain=None, expires=None, path="/",
+                   expires_days=None, **kwargs):
+        encrypted_value = self._encrypt(value)
+        self.handler.set_cookie(name, encrypted_value, domain=domain, expires=expires, path=path,
+                                expires_days=expires_days, **kwargs)
+
+    def set_secure_cookie(self, name, value, expires_days=30, **kwargs):
+        encrypted_value = self._encrypt(value)
+        self.handler.set_secure_cookie(name, encrypted_value,
+                        expires_days=expires_days, **kwargs)
+
+    def get_secure_cookie(self, name, value=None, max_age_days=31):
+        if value is None:
+            value = self.handler.get_cookie(name)
+        encrypted_value = self.handler.get_secure_cookie(name, value, max_age_days=max_age_days)
+        if encrypted_value:
+            return self._decrypt(encrypted_value.decode('utf-8'))
+        else:
+            return None
+
+class EncookieMixin(object):
+    @property
+    def encookie(self):
+        '''
+        Returns an encookie instance
+        '''
+
+        return create_mixin(self, '__encookie_manager', EncookieManager)
+
+class ConfigurationError(Exception):
+    pass
+
+def create_mixin(context, manager_property, manager_class):
+    if not hasattr(context, manager_property):
+        setattr(context, manager_property, manager_class(context))
+    return getattr(context, manager_property)
+
