/ Java Zone
Over a million developers have joined DZone.
{{announcement.body}}
{{announcement.title}}

AEoid: An OpenID Library for GAE

DZone's Guide to

AEoid: An OpenID Library for GAE

by
Mitch Pronschinske
·
Dec. 21, 09 · Java Zone
Free Resource

Comment (0)

Save
Tweet
{{ articles[0].views | formatCount}} Views

Learn how to troubleshoot and diagnose some of the most common performance issues in Java today. Brought to you in partnership with AppDynamics.

The Google App Engine team just released the AEoid library for fast and easy user authentication handling with OpenID.  AEoid is currently in its "first look" alpha phase with more features on the way.  In order for users to get started quickly, AEoid focuses on "convention over configuration."  You don't need to have any experience with OpenID in order to get started.

The GAE team made AEoid's interface very similar to the App Engine Users API so users could leverage a familiar environment: 

from aeoid import users

class TestData(db.Model):
  user = users.UserProperty()

class TestHandler(webapp.RequestHandler):
  def get(self):
    user = users.get_current_user()
    if not user:
      self.redirect(users.create_login_url(self.request.url))
      return
    logging.warn("Logged in as %s (%s)", user.nickname(), user.user_id())
    data = TestData(user=user)
    data.put()

There are just a few differences.  First, you have to specify an OpenID URL in order to construct a User Object.  Users are identified by their OpenID endpoint.  Since nicknames and email addresses are user-generated, they're not validated or guaranteed to be unique.  is_current_user_admin() hasn't been implemented and login: clauses in app.yaml are not affected by AEoid, but they still use the regular Users API to authenticate.

AEoid uses a single piece of WSGI middleware, which you include in your app upon installation.  With App Engine's built in webapp framework, or any other framework that calls the run_wsgi_app function, App Engine's configuration framework can be used to install AEoid.  

from aeoid import middleware

def webapp_add_wsgi_middleware(app):
  app = middleware.AeoidMiddleware(app)
  return app

Frameworks that don't use run_wsgi_app, will need to insert the middleware into the processing chain. 

application = webapp.WSGIApplication([
    # ...
], debug=True)
application = middleware.AeoidMiddleware(application)

The AEoid code uses the python-openid library for authenticating with OpenID.  The beaker sessions library is used for user session tracking.  The components of the AEoid code include request handlers, the public interface, and the middleware code.  The request handlers (login/log out pages and requests) contain most of the OpenID machinery.  Users submit their OpenID URL then the login handler redirects them back to their provider after creating an OpenID request.  After login is finished, the provider sends the user back to AEoid's completion handler, which then creates the user session and redirects them back to the application.  The public interface is just like the App Engine Users module.  User objects are wrappers around a datastore entity with the user's information.  A UserProperty stores the key to the internal User object while providing a UI identical to the UserProperty's interface.

Although AEoid should be compatible with most frameworks, it has only been tested with the webapp framework so far.  The code may have problems integrating with frameworks that include their own copy of beaker or python-openid.  The GAE team says there's a lot of room for improvement on AEoid.  If you are using AEoid with a framework other than webapp, the team wants to know about it so they can add the frameworks to the list of compatible integrations.  GAE is also looking for feature requests and bug reports.  They say the UI is subject to change depending on user feedback.  Users can't configure the OpenID library right now, but the GAE team says this will likely change in the near future.

Understand the needs and benefits around implementing the right monitoring solution for a growing containerized market. Brought to you in partnership with AppDynamics.

Like This Article? Read More From DZone

Incident Resolution When You WannaCry
The Scrum Product Owner Theses
Top 5 Free Tools for Rapid Web App Development

Free DZone Refcard

Contexts and Dependency Injection for the Java EE Platform
DOWNLOAD
Topics:

Comment (0)

Save
Tweet
{{ articles[0].views | formatCount}} Views

Opinions expressed by DZone contributors are their own.

Java Partner Resources

The Importance of Monitoring Containers
IBM Bluemix: From Idea to Application
A Practical Guide to Learning Git
Improve Code Quality with this Tutorial
We have the data behind great user experiences. Now you can too. Read the infographic.
Boost your Java™ IQ to Meet the Demands of Today's Enterprise
What's Driving Development Today? 17,000 Software Professionals Tell Us.
Building Reactive Microservices in Java: Asynchronous and Event-Based Application Design
Extend Java Apps to Mobile and Cloud
The single app analytics solutions to take your web and mobile apps to the next level. Try today!
Jenkins, Docker and DevOps: The Innovation Catalysts
Market Guide for Application Platforms

Java Partner Resources

The Importance of Monitoring Containers
IBM Bluemix: From Idea to Application
A Practical Guide to Learning Git
Improve Code Quality with this Tutorial
THE DZONE NEWSLETTER

Dev Resources & Solutions Straight to Your Inbox

Thanks for subscribing!

Awesome! Check your inbox to verify your email so you can start receiving the latest in tech news and resources.

X

{{ parent.title || parent.header.title}}

{{ parent.tldr }}

{{ parent.linkDescription }}

{{ parent.urlSource.name }}
by {{ parent.authors[0].realName || parent.author}}
· {{ parent.articleDate | date:'MMM. dd, yyyy' }} {{ parent.linkDate | date:'MMM. dd, yyyy' }}
· {{ parent.portal.name }} Zone