[twill] HTTPS client certificates (was Re: Twill question) (fwd)
John J Lee
jjl at pobox.com
Sat May 27 07:58:46 PDT 2006
Oops, spot the deliberate misteka ;-) should have been:
opener = urllib.FancyURLopener(key_file=KEY_FILE,
r = opener.open()
... which *does* work for me. Sorry for the noise everybody.
On Sat, 27 May 2006, John J Lee wrote:
> Just forwarding this in case anybody here can shed light on this -- urllib's
> support for SSL client certificates didn't work for me, and I'm wondering if
> it works for anybody else...
> ---------- Forwarded message ----------
> Date: Sat, 27 May 2006 14:33:03 +0000 (UTC)
> From: John J Lee <jjl at pobox.com>
> To: Wayne Wang <ytwgq at sbcglobal.net>, twill at lists.idyll.org
> Subject: HTTPS client certificates (was Re: Twill question)
> On Fri, 26 May 2006, Wayne Wang wrote:
> [...wants https client auth...]
> OK, I added the necessary boilerplate to mechanize (haven't committed yet),
> but the basic support for this that comes with Python didn't work for me on a
> local test server I set up, so I couldn't get it working with mechanize
> Wayne, and anybody else who uses client certificates and is inclined to help
> out: could you try running this script, after replacing HTTPS_URL with a URL
> on the secure site you're trying to access, and KEY_FILE and CERT_FILE with
> the full filenames where you keep those?
> I'm afraid you have to convert the p12 file into separate PEM-format key and
> cert files using e.g. OpenSSL:
> openssl pkcs12 -clcerts -nokeys -in cert.p12 -out cert.pem
> openssl pkcs12 -nocerts -in cert.p12 -out key.pem
> HTTPS_URL = "https://example.com:443/restricted/foo.html"
> KEY_FILE = r"c:\blah\blah\key.pem"
> CERT_FILE = r"c:\blah\blah\cert.pem"
> import urllib
> r = urllib.urlopen()
> print r.read()
More information about the twill