Created
March 6, 2013 22:43
-
-
Save mattbasta/5103862 to your computer and use it in GitHub Desktop.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import hashlib | |
| import hmac | |
| import json | |
| import urllib | |
| import urllib2 | |
| import uuid | |
| SECRET = "This is a value which should be unique to the service." | |
| def verify_assertion(assertion): | |
| query_args = { | |
| 'assertion': assertion, | |
| 'audience': 'http://localhost:8675' | |
| } | |
| encoded_args = urllib.urlencode(query_args) | |
| url = 'https://verifier.login.persona.org/verify' | |
| try: | |
| output = urllib2.urlopen(url, encoded_args).read() | |
| print output | |
| data = json.loads(output) | |
| if data['status'] != 'okay': | |
| return False | |
| return data['email'] | |
| except Exception, e: | |
| print e | |
| return False | |
| _consumer_id = lambda email: hashlib.sha1(email + SECRET).hexdigest() | |
| def get_token(email): | |
| unique_id = uuid.uuid4().hex | |
| consumer_id = _consumer_id(email) | |
| hm = hmac.new( | |
| unique_id + SECRET, consumer_id, hashlib.sha512) | |
| return ','.join((hm.hexdigest(), unique_id)) | |
| def confirm_token(email, token): | |
| hm, unique_id = token.split(',') | |
| consumer_id = _consumer_id(email) | |
| return hmac.new( | |
| unique_id + SECRET, consumer_id, hashlib.sha512).hexdigest() == hm |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment