Home Explore Help
Register Sign In
dayuan
/
manyi
6
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: d2d140d11f
Branches Tags
manyi
/
patch_celery.py

patch_celery.py 2.6 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071 
  1. # -*- coding: utf-8 -*-
    2. 

  2. # !/usr/bin/env python
    3. 

  3. 

  4. 

  5. __import__('urllib3.contrib.pyopenssl')
    6. 

  6. 

  7. import requests
    8. 

  8. from OpenSSL.crypto import PKCS12, X509, PKey
    9. 

  9. 

  10. 

  11. def _is_key_file_encrypted(keyfile):
    12. 

  12.     '''In memory key is not encrypted'''
    13. 

  13.     if isinstance(keyfile, PKey):
    14. 

  14.         return False
    15. 

  15. 

  16.     return _is_key_file_encrypted.original(keyfile)
    17. 

  17. 

  18. 

  19. class PyOpenSSLContext(requests.packages.urllib3.contrib.pyopenssl.PyOpenSSLContext):
    20. 

  20.     def load_cert_chain(self, certfile, keyfile = None, password = None):
    21. 

  21.         if isinstance(certfile, X509) and isinstance(keyfile, PKey):
    22. 

  22.             self._ctx.use_certificate(certfile)
    23. 

  23.             self._ctx.use_privatekey(keyfile)
    24. 

  24.         else:
    25. 

  25.             super(PyOpenSSLContext, self).load_cert_chain(certfile, keyfile = keyfile, password = password)
    26. 

  26. 

  27. 

  28. class HTTPAdapter(requests.adapters.HTTPAdapter):
    29. 

  29.     '''Handle a variety of cert types'''
    30. 

  30. 

  31.     def cert_verify(self, conn, url, verify, cert):
    32. 

  32.         if cert:
    33. 

  33.             # PKCS12
    34. 

  34.             if isinstance(cert, PKCS12):
    35. 

  35.                 conn.cert_file = cert.get_certificate()
    36. 

  36.                 conn.key_file = cert.get_privatekey()
    37. 

  37.                 cert = None
    38. 

  38.             elif isinstance(cert, tuple) and len(cert) == 2:
    39. 

  39.                 # X509 and PKey
    40. 

  40.                 if isinstance(cert[0], X509) and isinstance(cert[1], PKey):
    41. 

  41.                     conn.cert_file = cert[0]
    42. 

  42.                     conn.key_file = cert[1]
    43. 

  43.                     cert = None
    44. 

  44.                 # cryptography objects
    45. 

  45.                 elif hasattr(cert[0], 'public_bytes') and hasattr(cert[1], 'private_bytes'):
    46. 

  46.                     conn.cert_file = X509.from_cryptography(cert[0])
    47. 

  47.                     conn.key_file = PKey.from_cryptography_key(cert[1])
    48. 

  48.                     cert = None
    49. 

  49.         super(HTTPAdapter, self).cert_verify(conn, url, verify, cert)
    50. 

  50. 

  51. 

  52. def patch_requests(adapter = True):
    53. 

  53.     '''You can perform a full patch and use requests as usual:
    54. 

  54. 

  55.     >>> patch_requests()
    56. 

  56.     >>> requests.get('https://httpbin.org/get')
    57. 

  57. 

  58.     or use the adapter explicitly:
    59. 

  59. 

  60.     >>> patch_requests(adapter=False)
    61. 

  61.     >>> session = requests.Session()
    62. 

  62.     >>> session.mount('https', HTTPAdapter())
    63. 

  63.     >>> session.get('https://httpbin.org/get')
    64. 

  64.     '''
    65. 

  65.     if hasattr(requests.packages.urllib3.util.ssl_, '_is_key_file_encrypted'):
    66. 

  66.         _is_key_file_encrypted.original = requests.packages.urllib3.util.ssl_._is_key_file_encrypted
    67. 

  67.         requests.packages.urllib3.util.ssl_._is_key_file_encrypted = _is_key_file_encrypted
    68. 

  68. 

  69.     requests.packages.urllib3.util.ssl_.SSLContext = PyOpenSSLContext
    70. 

  70.     if adapter:
    71. 

  71.         requests.sessions.HTTPAdapter = HTTPAdapter
    72.