Utilities for ZAP authentication.
To run authentication in a background thread, see zmq.auth.thread. For integration with the tornado eventloop, see zmq.auth.ioloop.
New in version 14.1.
Implementation of ZAP authentication for zmq connections.
Note: - libzmq provides four levels of security: default NULL (which the Authenticator does
not see), and authenticated NULL, PLAIN, and CURVE, which the Authenticator can see.
(classic ZeroMQ behavior), and all PLAIN and CURVE connections are denied.
x.__delattr__(‘name’) <==> del x.name
default object formatter
x.__getattribute__(‘name’) <==> x.name
x.__hash__() <==> hash(x)
helper for pickle
helper for pickle
x.__repr__() <==> repr(x)
x.__setattr__(‘name’, value) <==> x.name = value
__sizeof__() -> int size of object in memory, in bytes
x.__str__() <==> str(x)
Allow (whitelist) IP address(es).
Connections from addresses not in the whitelist will be rejected.
whitelist is mutually exclusive with blacklist.
Configure CURVE authentication for a given domain.
CURVE authentication uses a directory that holds all public client certificates, i.e. their public keys.
To cover all domains, use “*”.
You can add and remove certificates in that directory at any time.
To allow all client keys without checking, specify CURVE_ALLOW_ANY for the location.
Configure PLAIN authentication for a given domain.
PLAIN authentication uses a plain-text password file. To cover all domains, use “*”. You can modify the password file at any time; it is reloaded automatically.
Deny (blacklist) IP address(es).
Addresses not in the blacklist will be allowed to continue with authentication.
Blacklist is mutually exclusive with whitelist.
Perform ZAP authentication
Create and bind the ZAP socket
Close the ZAP socket
Create zmq certificates.
Returns the file paths to the public and secret certificate files.
Load public and secret key from a zmq certificate.
Returns (public_key, secret_key)
If the certificate file only contains the public key, secret_key will be None.
If there is no public key found in the file, ValueError will be raised.
Load public keys from all certificates in a directory