Thanks to visit codestin.com
Credit goes to github.com

Skip to content
/ python-wss Public
forked from tripzero/python-wss

Simple python secure websocket server/client with optional authentication built in

0 stars 14 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

TurBoss/python-wss

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

28 Commits
tests
tests
 
 
wss
wss
 
 
README.md
README.md
 
 
python-wss.license
python-wss.license
 
 
setup.py
setup.py
 
 

Repository files navigation

python-wss

Simple python secure websocket server/client with optional authentication built in.

This is just a simple wrapper around autobahn that removes the need to write a bunch of boiler plate code if you just want a simple and secure server client to send messages back and forth. It has optional diffie-helman-based authentication (what? dh isn't for authentication?).

You still need to create your own ssl certs and keys. You can follow this guide on how to create a locally signed cert/key combo:

https://tripzero.io/general/secure-websocket-server-using-autobahn-and-trollius-asyncio/ from archive.org

Websockets are a pretty useful way of passing information to and from clients.  But how do you make them secure?  I’m documenting how I’m figuring it out as I go.  Let’s get started.

First, let’s get a simple autobahn server and client up and running.  This is straight from the asyncio example on github.  Running it with python server.py and python client.py respectively.

To make things secure, first we need to create some keys and certificates.  I am creating a self-signed certificate and key for both the server and the test client:

    openssl genrsa -des3 -out server.key 2048
    openssl rsa -in server.key -out server.key
    openssl req -sha256 -new -key server.key -out server.csr -subj '/CN=localhost'
    openssl x509 -req -days 365 -in server.csr -signkey server.key -out server.crt

Next we need to add a few lines to our server and client.  For the server add:

    sslcontext = ssl.SSLContext(ssl.PROTOCOL_SSLv23)
    sslcontext.load_cert_chain(‘server.crt’, “server.key”)

and when we create the server, we will pass in the context.  Find the “loop.create_server” line and change it to:

    coro = loop.create_server(factory, ‘0.0.0.0’, 9000, ssl=sslcontext)

The client is almost identical:

    sslcontext = ssl.SSLContext(ssl.PROTOCOL_SSLv23)
    sslcontext.load_cert_chain(‘client.crt’, “client.key”)
    coro = loop.create_connection(factory, ‘127.0.0.1’, 9000, ssl=sslcontext)

That’s it!

You can also use letsencrypt.org to create cert/keys.

basic usage:

import wss
import asyncio

loop = asyncio.get_event_loop()

server =  wss.Server(port=1234, usessl=True, sslcert="path/to/cert.crt", 
                     sslkey="path/to/server.key", auth=None)

def onTextMessage(msg, client):
	print("got message from client:", msg)

def onBinaryMessage(msg, client):
	print("got binary message")

server.setTextHandler(onTextMessage)
server.setBinaryHandler(onBinaryMessage)

@asyncio.coroutine
def sendData():
	while True:
		try:
			print("trying to broadcast...")
			s.broadcast("{'hello' : 'world' }")
		except:
			exc_type, exc_value, exc_traceback = sys.exc_info()
			traceback.print_tb(exc_traceback, limit=1, file=sys.stdout)
			traceback.print_exception(exc_type, exc_value, exc_traceback,
                          limit=2, file=sys.stdout)

		yield from asyncio.sleep(30)

loop.create_task(sendData())

server.start()
loop.run_forever()

About

Simple python secure websocket server/client with optional authentication built in

Resources

Readme
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 100.0%