6.1.1.3.1.4.1.1. linotp.lib.security.default module

default SecurityModules which takes the enc keys from a file

class linotp.lib.security.default.DefaultSecurityModule(config=None)

Bases: linotp.lib.security.SecurityModule

decrypt(input, iv, id=0)

security module methods: decrypt

Parameters:data – the to be decrypted data

:type data:byte string

Parameters:

• iv (random bytes) – initialisation vector (salt)
• id (int) – slot of the key array

Returns:

decrypted data

Return type:

byte string

decryptPassword(cryptPass)

dedicated security module methods: decryptPassword which used one slot id to decryt a string

Parameters:

• cryptPassword – the crypted password - leading iv, seperated by the ‘:’
• cryptPassword – byte string

Returns:

decrypted data

Return type:

byte string

decryptPin(cryptPin)

dedicated security module methods: decryptPin which used one slot id to decryt a string

Parameters:

• cryptPin – the crypted pin - - leading iv, seperated by the ‘:’
• cryptPin – byte string

Returns:

decrypted data

Return type:

byte string

encrypt(data, iv, id=0)

security module methods: encrypt

Parameters:data – the to be encrypted data

:type data:byte string

Parameters:

• iv (random bytes) – initialisation vector (salt)
• id (int) – slot of the key array

Returns:

encrypted data

Return type:

byte string

encryptPassword(password)

dedicated security module methods: encryptPassword which used one slot id to encrypt a string

Parameters:

• password – the to be encrypted password
• password – byte string

Returns:

encrypted data - leading iv, seperated by the ‘:’

Return type:

byte string

encryptPin(pin)

dedicated security module methods: encryptPin which used one slot id to encrypt a string

Parameters:

• pin – the to be encrypted pin
• pin – byte string

Returns:

encrypted data - leading iv, seperated by the ‘:’

Return type:

byte string

getSecret(id=0)

internal function, which acceses the key in the defined slot

Parameters:id (int) – slot id of the key array Returns:key or secret Return type:binary string

isReady()

provides the status, if the security module is fully initializes this is required especially for the runtime confi like set password ++

Returns:status, if the module is fully operational Return type:boolean

random(len=32)

security module methods: random

Parameters:len (int) – length of the random byte array Returns:random bytes Return type:byte string

setup_module(param)

callback, which is called during the runtime to initialze the security module

Parameters:params (dict) – all parameters, which are provided by the http request Returns:

class linotp.lib.security.default.ErrSecurityModule(config=None)

Bases: linotp.lib.security.default.DefaultSecurityModule

setup_module(params)