Authentication ZMQ

Author: entwanne

authzmq/auth_client.py

@@ -0,0 +1,14 @@
+#!/usr/bin/env python
+
+import zmq
+import zmq.auth
+
+context = zmq.Context()
+
+socket = context.socket(zmq.REQ)
+socket.curve_publickey, socket.curve_secretkey = zmq.auth.load_certificate('keys/client.key_secret')
+socket.curve_serverkey, _ = zmq.auth.load_certificate('keys/server.key')
+socket.connect ("tcp://localhost:{}".format(53487))
+
+socket.send(b'Hello')
+print(socket.recv())

authzmq/auth_server.py

@@ -0,0 +1,23 @@
+#!/usr/bin/env python
+
+import zmq
+import zmq.auth
+from zmq.auth.thread import ThreadAuthenticator
+
+context = zmq.Context()
+auth = ThreadAuthenticator(context)
+auth.start()
+#auth.configure_curve(domain='*', location=zmq.auth.CURVE_ALLOW_ANY)
+auth.configure_curve(domain='*', location='authorized_keys')
+
+socket = context.socket(zmq.REP)
+socket.curve_server = True
+socket.curve_publickey, socket.curve_secretkey = zmq.auth.load_certificate('keys/server.key_secret')
+socket.bind("tcp://*:{}".format(53487))
+
+while True:
+    msg = socket.recv()
+    print("Received request: ", msg)
+    socket.send(b'ok')
+
+auth.stop()

authzmq/authorized_keys/client.key

@@ -0,0 +1,9 @@
+#   ****  Generated on 2014-05-13 17:36:45.315366 by pyzmq  ****
+#   ZeroMQ CURVE Public Certificate
+#   Exchange securely, or use a secure mechanism to verify the contents
+#   of this file after exchange. Store public certificates in your home
+#   directory, in the .curve subdirectory.
+
+metadata
+curve
+    public-key = "25m(@z#)Z:nkaJyXvhC)lS!vHgz8[ZXg=jMgi{+W"

authzmq/client.py

@@ -0,0 +1,10 @@
+#!/usr/bin/env python
+
+import zmq
+
+context = zmq.Context()
+socket = context.socket(zmq.REQ)
+socket.connect ("tcp://localhost:{}".format(53487))
+
+socket.send(b'Hello')
+print(socket.recv())

authzmq/gen_keys.py

@@ -0,0 +1,7 @@
+#!/usr/bin/env python
+
+import zmq.auth
+
+keys_dir = 'keys'
+zmq.auth.create_certificates(keys_dir, 'server')
+zmq.auth.create_certificates(keys_dir, 'client')

authzmq/keys/client.key

@@ -0,0 +1,9 @@
+#   ****  Generated on 2014-05-13 17:36:45.315366 by pyzmq  ****
+#   ZeroMQ CURVE Public Certificate
+#   Exchange securely, or use a secure mechanism to verify the contents
+#   of this file after exchange. Store public certificates in your home
+#   directory, in the .curve subdirectory.
+
+metadata
+curve
+    public-key = "25m(@z#)Z:nkaJyXvhC)lS!vHgz8[ZXg=jMgi{+W"

authzmq/keys/client.key_secret

@@ -0,0 +1,8 @@
+#   ****  Generated on 2014-05-13 17:36:45.315366 by pyzmq  ****
+#   ZeroMQ CURVE **Secret** Certificate
+#   DO NOT PROVIDE THIS FILE TO OTHER USERS nor change its permissions.
+
+metadata
+curve
+    public-key = "25m(@z#)Z:nkaJyXvhC)lS!vHgz8[ZXg=jMgi{+W"
+    secret-key = "(<fK!2s%ZJ<ebKd?IF5l!kJJ(PPwk-cwOJUIEmAm"

authzmq/keys/server.key

@@ -0,0 +1,9 @@
+#   ****  Generated on 2014-05-13 17:36:45.314747 by pyzmq  ****
+#   ZeroMQ CURVE Public Certificate
+#   Exchange securely, or use a secure mechanism to verify the contents
+#   of this file after exchange. Store public certificates in your home
+#   directory, in the .curve subdirectory.
+
+metadata
+curve
+    public-key = "-zB.*[8*RUhCmp{[w0!R&n.E<fah.(wHo+dpuuvA"

authzmq/keys/server.key_secret

@@ -0,0 +1,8 @@
+#   ****  Generated on 2014-05-13 17:36:45.314747 by pyzmq  ****
+#   ZeroMQ CURVE **Secret** Certificate
+#   DO NOT PROVIDE THIS FILE TO OTHER USERS nor change its permissions.
+
+metadata
+curve
+    public-key = "-zB.*[8*RUhCmp{[w0!R&n.E<fah.(wHo+dpuuvA"
+    secret-key = "aZ2Xu7-StY[4Sa(!+.1WHsV<bE$t+PB%(uQD&Fq?"

authzmq/requirements.txt

@@ -0,0 +1 @@
+pyzmq==14.3.0

authzmq/server.py

@@ -0,0 +1,13 @@
+#!/usr/bin/env python
+
+import zmq
+
+context = zmq.Context()
+socket = context.socket(zmq.REP)
+#socket.bind("tcp://*:{}".format(53487))
+socket.bind("tcp://127.0.0.1:{}".format(53487))
+
+while True:
+    msg = socket.recv()
+    print("Received request: ", msg)
+    socket.send(b'ok')