Resolve merge conflicts

Author: zfi

Failures.py

@@ -178,6 +178,16 @@ def wrong_password(email):
            }, 401
 
 
+def password_unknown_format(fault_message):
+    logging.debug('Failures: %s', fault_message)
+    return {
+               'success': False,
+               'message': 'Unencoded Unicode password',
+               'code': 475,
+               'data': fault_message
+           }, 500
+
+
 def unknown_bucket_type(bucket_type):
     logging.debug('Failures: Unknown bucket type: %s', bucket_type)
     return {
@@ -196,3 +206,4 @@ def wrong_auth_source(auth_source):
         'code': 480,
         'data': auth_source
         }, 500
+

app/Authenticate/controllers.py

@@ -76,15 +76,18 @@ def post(self):
         if not rate_limiting_services.has_sufficient_tokens(user.id, 'failed-password', 1):
             return Failures.rate_exceeded()
 
-        if not user_services.check_password(user.id, password):
-            rate_limiting_services.consume_tokens(user.id, 'failed-password', 1)
-            db.session.commit()
-            return Failures.wrong_password(email)
+        # The password might not be encoded correctly when submitted. This
+        # could cause the check_password method to fault. We trap that
+        # possibility and address it here.
+        try:
+            if not user_services.check_password(user.id, password):
+                rate_limiting_services.consume_tokens(user.id, 'failed-password', 1)
+                return Failures.wrong_password(email)
+        except TypeError:
+            return Failures.password_unknown_format("Unicode-objects must be encoded before hashing")
 
         db.session.commit()
-
         logging.info('Authenticate-controller: Authenticate: success: %s', email)
-
         return {'success': True, 'user': {
             'id': user.id,
             'email': user.email,

app/Health/__init__.py

@@ -0,0 +1,95 @@
+# ------------------------------------------------------------------------------
+#  Copyright (c) 2019 Parallax Inc.                                            -
+#                                                                              -
+#  Permission is hereby granted, free of charge, to any person obtaining       -
+#  a copy of this software and associated documentation files (the             -
+#  “Software”), to deal in the Software without restriction, including         -
+#  without limitation the rights to use, copy,  modify, merge, publish,        -
+#  distribute, sublicense, and/or sell copies of the Software, and to          -
+#  permit persons to whom the Software is furnished to do so, subject          -
+#  to the following conditions:                                                -
+#                                                                              -
+#     The above copyright notice and this permission notice shall be           -
+#     included in all copies or substantial portions of the Software.          -
+#                                                                              -
+#  THE SOFTWARE IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND,             -
+#  EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF          -
+#  MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE AND NONINFINGEMENT.       -
+#  IN NO EVENT SHALL THE AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY        -
+#  CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN AN ACTION OF CONTRACT,        -
+#  TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNECTION WITH THE           -
+#  SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE.                      -
+#                                                                              -
+#                                                                              -
+# ------------------------------------------------------------------------------
+
+import logging
+from flask_restful import Api, Resource
+from flask import request, Blueprint
+from app import __version__
+
+
+# Set the base URL for this module and register it
+health_app = Blueprint('health', __name__, url_prefix='/health')
+api = Api(health_app)
+
+
+class Ping(Resource):
+    # noinspection PyUnresolvedReferences
+    """
+        Provide a simple response to verify that the Rest API is functioning.
+
+        Args:
+            None
+
+        Returns:
+            A JSON document with the key 'success' set to True, 'message' set to
+            the constant 'pong', and a 200 response code.
+
+        Raises:
+            None
+        """
+    def get(self):
+        # Ping the REST server for signs of life
+        server = request.headers.get('server')
+        logging.info("Requesting ping from server %s", server)
+
+        return {
+            'Success': True,
+            'message': 'pong',
+            'code': 200
+        }
+
+
+class Version(Resource):
+    # noinspection PyUnresolvedReferences
+    """
+        Provide the application version string.
+
+        Args:
+            None
+
+        Returns:
+            A JSON document with the key 'success' set to True, 'message' contains a
+            version element holding a string representation of the application version
+            number, and a 200 response code.
+
+        Raises:
+            None
+        """
+    def get(self):
+        # Ping the REST server for signs of life
+        server = request.headers.get('server')
+        logging.info("Requesting version info from server %s", server)
+
+        return {
+            'Success': True,
+            'message': {
+                'version': __version__.__version__,
+            },
+            'code': 200
+        }
+
+
+api.add_resource(Ping, '/ping')
+api.add_resource(Version, '/version')

app/Health/controllers.py

@@ -27,7 +27,7 @@
 import logging
 
 import Failures
-from app import db, app
+from app import db
 
 
 from flask_restful import Resource, Api
@@ -43,22 +43,24 @@
 
 
 class DoConfirm(Resource):
+    # noinspection PyUnresolvedReferences
     """
-    Confirm and activate a user account.
+        Confirm and activate a user account.
 
-    Args:
-        None
+        Args:
+            None
 
-    Returns:
-        A JSON document with the key 'success' set to True if the operation
-        is successful. Otherwise the key 'success' is set to False and the
-        field 'code' is set to the HTTP error code that represents a specific
-        reason when the account confirmation was rejected.
+        Returns:
+            A JSON document with the key 'success' set to True if the operation
+            is successful. Otherwise the key 'success' is set to False and the
+            field 'code' is set to the HTTP error code that represents a specific
+            reason when the account confirmation was rejected.
 
-    Raises:
-        None
-    """
+        Raises:
+            None
+        """
 
+    # noinspection PyMethodMayBeStatic
     def post(self):
         # Get values
         email = request.form.get('email')   # User account email address

app/LocalUser/controllers.py

@@ -43,13 +43,13 @@ def get_user(id_user):
 
 def get_password_hash(password):
     salt = str(uuid.uuid1())
-    password_hash = hashlib.sha256("%s:%s" % (password, salt)).hexdigest()
+    password_hash = hashlib.sha256((password + ":" + salt).encode()).hexdigest()
     return salt, password_hash
 
 
 def check_password(id_user, password):
     user = get_user(id_user)
-    password_hash = hashlib.sha256("%s:%s" % (password, user.salt)).hexdigest()
+    password_hash = hashlib.sha256((password + ":" + user.salt).encode()).hexdigest()
     return user.password == password_hash
 
 

app/User/services.py

@@ -52,7 +52,7 @@
 
 # ---------- Constants ----------
 CONFIG_FILE = 'cloudsession.ini'
-DEFAULT_LOG_PATH =  '/var/log/supervisor/cloud-session-app.log'
+DEFAULT_LOG_PATH = '/var/log/supervisor/cloud-session-app.log'
 
 # Define the WSGI application object
 app = Flask(__name__)
@@ -142,22 +142,22 @@
 config['DEFAULT'] = configDefaults
 
 if isfile(configFile):
+    logging.info('Loading settings from %s.', configFile)
+
     # Load default settings first
     # configs = ConfigParser(configDefaults)
 
     # Load configuration file to override default settings
     config.read_file(open(configFile))
-
     logging.debug('Configuration Key Settings')
 
     # Load settings from the configuration file into a dictionary
     # for section in config.sections():
-    #    logging.debug(('Section: %s', section))
     for (key, value) in config.items('application', True):
-        app_configs[key] = value
         logging.debug("Key:%s, Value:%s", key, value)
+        app_configs[key] = value
 
-    # Set the default configuration
+    logging.info("End of configuration list.")
     app.config['CLOUD_SESSION_PROPERTIES'] = app_configs
 
 else:
@@ -225,14 +225,15 @@
 if db is not None:
     from app.Authenticate.controllers import authenticate_app
     from app.AuthToken.controllers import auth_token_app
+    from app.Health.controllers import health_app
     from app.User.controllers import user_app
     from app.LocalUser.controllers import local_user_app
     from app.RateLimiting.controllers import rate_limiting_app
     from app.OAuth.controllers import oauth_app
 
-
 app.register_blueprint(auth_token_app)
 app.register_blueprint(authenticate_app)
+app.register_blueprint(health_app)
 app.register_blueprint(user_app)
 app.register_blueprint(local_user_app)
 app.register_blueprint(rate_limiting_app)

app/__init__.py

@@ -27,6 +27,15 @@
 """
 Change Log
 
+1.3.2       Update supervisor package to accommodate the removal of the cgi
+            library in python 3.8.
+            Add API keys for version and ping.
+
+1.3.1       Add error handling to password authentication to trap the possibility
+            of an unencoded password submission.
+            Update password hash methods to accommodate a change in default string
+            handling in Python3.
+
 1.3.0       Update all packages to current releases.
             Refactor to support Python 3.7
 
@@ -46,4 +55,4 @@
 
 """
 
-__version__ = "1.3.0"
+__version__ = "1.3.2"

app/__version__.py

@@ -0,0 +1,41 @@
+
+from redis import Redis
+
+
+password = "Qb@zGhzfF+jAmphvu?Rvxq9P9Nkjwv3ECCoR+Gc4Qx3FWeN(oUf"
+
+# create a connection to the localhost Redis server instance, by
+# default it runs on port 6379
+
+redis_db = Redis(
+    host="192.168.0.111",
+    port=6379,
+    db=0,
+    password=password)
+
+# see what keys are in Redis
+print(redis_db.keys())
+
+# output for keys() should be an empty list "[]"
+redis_db.set('full stack', 'python')
+
+# output should be "True"
+print(redis_db.keys())
+
+# now we have one key so the output will be "[b'full stack']"
+print(redis_db.get('full stack'))
+
+# output is "b'python'", the key and value still exist in Redis
+print(redis_db.incr('twilio'))
+
+# output is "1", we just incremented even though the key did not
+# previously exist
+print(redis_db.get('twilio'))
+
+# output is "b'1'" again, since we just obtained the value from
+# the existing key
+print(redis_db.delete('twilio'))
+
+# output is "1" because the command was successful
+print(redis_db.get('twilio'))
+# nothing is returned because the key and value no longer exist

redis_exercise.py

@@ -12,16 +12,56 @@ itsdangerous==1.1.0
 Jinja2==2.10
 MarkupSafe==1.1.1
 more-itertools==6.0.0
+
+# ===================================================================================
+# NOTE:
+# There is a bug in the mysqlclient installation process on MocOS systems.
+#
+# https://pypi.org/project/mysqlclient/
+#
+# Note about bug of MySQL Connector/C on macOS
+#
+# See also: https://bugs.mysql.com/bug.php?id=86971
+#
+# Versions of MySQL Connector/C may have incorrect default configuration
+# options that cause compilation errors when mysqlclient-python is installed.
+# (As of November 2017, this is known to be true for homebrew's mysql-connector-c
+# and official package)
+#
+# Modification of mysql_config resolves these issues as follows.
+#
+# Change
+#
+# on macOS, on or about line 112:
+#
+#   # Create options
+#   libs="-L$pkglibdir"
+#   libs="$libs -l "
+#
+# to
+#
+#   # Create options
+#   libs="-L$pkglibdir"
+#   libs="$libs -lmysqlclient -lssl -lcrypto"
+#
+#
+# An improper ssl configuration may also create issues; see, e.g, brew info openssl
+# for details on macOS.
+# ===================================================================================
+
 mysqlclient==1.4.2.post1
-pkg-resources==0.0.0
+
+
 pluggy==0.9.0
 py==1.8.0
 pystache==0.5.4
 pytz==2018.9
+redis==3.2.1
 sentry-sdk==0.7.6
 six==1.12.0
 SQLAlchemy==1.3.0
+supervisor==4.2.1
 urllib3==1.24.1
-uWSGI==2.0.18
+uWSGi==2.0.18 
 validate-email==1.3
 Werkzeug==0.14.1