IdentityPython
diff --git a/‎src/saml2/ident.py
Lines changed: 2 additions & 1 deletion b/‎src/saml2/ident.py
Lines changed: 2 additions & 1 deletion
diff --git a/‎src/saml2/server.py
Lines changed: 26 additions & 19 deletions b/‎src/saml2/server.py
Lines changed: 26 additions & 19 deletions
diff --git a/‎tests/test_37_entity_categories.py
Lines changed: 10 additions & 10 deletions b/‎tests/test_37_entity_categories.py
Lines changed: 10 additions & 10 deletions
diff --git a/‎tests/test_40_sigver.py
Lines changed: 2 additions & 2 deletions b/‎tests/test_40_sigver.py
Lines changed: 2 additions & 2 deletions
diff --git a/‎tests/test_41_response.py
Lines changed: 37 additions & 33 deletions b/‎tests/test_41_response.py
Lines changed: 37 additions & 33 deletions
diff --git a/‎tests/test_42_enc.py
Lines changed: 21 additions & 20 deletions b/‎tests/test_42_enc.py
Lines changed: 21 additions & 20 deletions
diff --git a/‎tests/test_44_authnresp.py
Lines changed: 33 additions & 32 deletions b/‎tests/test_44_authnresp.py
Lines changed: 33 additions & 32 deletions
@@ -334,4 +334,5 @@ def handle_manage_name_id_request(self, name_id, new_id=None,
         return name_id
 
     def close(self):
-        self.db.close()
+        if hasattr(self.db, 'close'):
+            self.db.close()
@@ -145,28 +145,32 @@ def init_config(self, stype="idp"):
             raise Exception("Couldn't open identity database: %s" %
                             (dbspec,))
 
-        _domain = self.config.getattr("domain", "idp")
-        if _domain:
-            self.ident.domain = _domain
-
-        self.ident.name_qualifier = self.config.entityid
+        try:
+            _domain = self.config.getattr("domain", "idp")
+            if _domain:
+                self.ident.domain = _domain
 
-        dbspec = self.config.getattr("edu_person_targeted_id", "idp")
-        if not dbspec:
-            pass
-        else:
-            typ = dbspec[0]
-            addr = dbspec[1]
-            secret = dbspec[2]
-            if typ == "shelve":
-                self.eptid = EptidShelve(secret, addr)
-            elif typ == "mongodb":
-                from saml2.mongo_store import EptidMDB
+            self.ident.name_qualifier = self.config.entityid
 
-                self.eptid = EptidMDB(secret, database=addr,
-                                      collection="eptid")
+            dbspec = self.config.getattr("edu_person_targeted_id", "idp")
+            if not dbspec:
+                pass
             else:
-                self.eptid = Eptid(secret)
+                typ = dbspec[0]
+                addr = dbspec[1]
+                secret = dbspec[2]
+                if typ == "shelve":
+                    self.eptid = EptidShelve(secret, addr)
+                elif typ == "mongodb":
+                    from saml2.mongo_store import EptidMDB
+
+                    self.eptid = EptidMDB(secret, database=addr,
+                                          collection="eptid")
+                else:
+                    self.eptid = Eptid(secret)
+        except Exception:
+            self.ident.close()
+            raise
 
     def wants(self, sp_entity_id, index=None):
         """ Returns what attributes the SP requires and which are optional
@@ -681,3 +685,6 @@ def create_ecp_authn_request_response(self, acs_url, identity,
         soap_envelope = soapenv.Envelope(header=header, body=body)
 
         return "%s" % soap_envelope
+
+    def close(self):
+        self.ident.close()
@@ -1,3 +1,4 @@
+from contextlib import closing
 from saml2 import saml, sigver
 from saml2 import md
 from saml2 import config
@@ -150,18 +151,17 @@ def test_filter_ava5():
 
 
 def test_idp_policy_filter():
-    idp = Server("idp_conf_ec")
+    with closing(Server("idp_conf_ec")) as idp:
+        ava = {"givenName": ["Derek"], "sn": ["Jeter"],
+               "mail": ["[email protected]"], "c": ["USA"],
+               "eduPersonTargetedID": "foo!bar!xyz",
+               "norEduPersonNIN": "19800101134"}
 
-    ava = {"givenName": ["Derek"], "sn": ["Jeter"],
-           "mail": ["[email protected]"], "c": ["USA"],
-           "eduPersonTargetedID": "foo!bar!xyz",
-           "norEduPersonNIN": "19800101134"}
-
-    policy = idp.config.getattr("policy", "idp")
-    ava = policy.filter(ava, "urn:mace:example.com:saml:roland:sp", idp.metadata)
+        policy = idp.config.getattr("policy", "idp")
+        ava = policy.filter(ava, "urn:mace:example.com:saml:roland:sp", idp.metadata)
 
-    print ava
-    assert ava.keys() == ["eduPersonTargetedID"]  # because no entity category
+        print ava
+        assert ava.keys() == ["eduPersonTargetedID"]  # because no entity category
 
 if __name__ == "__main__":
     test_idp_policy_filter()
@@ -438,7 +438,7 @@ def test_xbox():
     )
 
     sigass = sec.sign_statement(assertion, class_name(assertion),
-                                key_file="pki/mykey.pem", node_id=assertion.id)
+                                key_file=full_path("test.key"), node_id=assertion.id)
 
     _ass0 = saml.assertion_from_string(sigass)
 
@@ -457,7 +457,7 @@ def test_xbox():
     assers = extension_elements_to_elements(_seass.extension_elements,
                                             [saml, samlp])
 
-    sign_cert_file = "pki/mycert.pem"
+    sign_cert_file = full_path("test.pem")
 
     for ass in assers:
         _ass = "%s" % ass
 
@@ -1,6 +1,8 @@
 #!/usr/bin/env python
 # -*- coding: utf-8 -*-
 
+from contextlib import closing
+
 from saml2 import config
 from saml2.authn_context import INTERNETPROTOCOLPASSWORD
 
@@ -10,7 +12,9 @@
 from saml2.response import AuthnResponse
 from saml2.sigver import SignatureError
 
-FALSE_ASSERT_SIGNED = "saml_false_signed.xml"
+from pathutils import full_path
+
+FALSE_ASSERT_SIGNED = full_path("saml_false_signed.xml")
 
 TIMESLACK = 20000000  # Roughly +- 12 month
 
@@ -32,38 +36,38 @@ def _eq(l1, l2):
 
 class TestResponse:
     def setup_class(self):
-        server = Server("idp_conf")
-        name_id = server.ident.transient_nameid(
-            "urn:mace:example.com:saml:roland:sp", "id12")
-
-        self._resp_ = server.create_authn_response(
-            IDENTITY,
-            "id12",  # in_response_to
-            "http://lingon.catalogix.se:8087/",
-            # consumer_url
-            "urn:mace:example.com:saml:roland:sp",
-            # sp_entity_id
-            name_id=name_id)
-
-        self._sign_resp_ = server.create_authn_response(
-            IDENTITY,
-            "id12",  # in_response_to
-            "http://lingon.catalogix.se:8087/",  # consumer_url
-            "urn:mace:example.com:saml:roland:sp",  # sp_entity_id
-            name_id=name_id,
-            sign_assertion=True)
-
-        self._resp_authn = server.create_authn_response(
-            IDENTITY,
-            "id12",  # in_response_to
-            "http://lingon.catalogix.se:8087/",  # consumer_url
-            "urn:mace:example.com:saml:roland:sp",  # sp_entity_id
-            name_id=name_id,
-            authn=AUTHN)
-
-        conf = config.SPConfig()
-        conf.load_file("server_conf")
-        self.conf = conf
+        with closing(Server("idp_conf")) as server:
+            name_id = server.ident.transient_nameid(
+                "urn:mace:example.com:saml:roland:sp", "id12")
+
+            self._resp_ = server.create_authn_response(
+                IDENTITY,
+                "id12",  # in_response_to
+                "http://lingon.catalogix.se:8087/",
+                # consumer_url
+                "urn:mace:example.com:saml:roland:sp",
+                # sp_entity_id
+                name_id=name_id)
+
+            self._sign_resp_ = server.create_authn_response(
+                IDENTITY,
+                "id12",  # in_response_to
+                "http://lingon.catalogix.se:8087/",  # consumer_url
+                "urn:mace:example.com:saml:roland:sp",  # sp_entity_id
+                name_id=name_id,
+                sign_assertion=True)
+
+            self._resp_authn = server.create_authn_response(
+                IDENTITY,
+                "id12",  # in_response_to
+                "http://lingon.catalogix.se:8087/",  # consumer_url
+                "urn:mace:example.com:saml:roland:sp",  # sp_entity_id
+                name_id=name_id,
+                authn=AUTHN)
+
+            conf = config.SPConfig()
+            conf.load_file("server_conf")
+            self.conf = conf
 
     def test_1(self):
         xml_response = ("%s" % (self._resp_,))
 
@@ -1,3 +1,4 @@
+from contextlib import closing
 from saml2.authn_context import INTERNETPROTOCOLPASSWORD
 from saml2.server import Server
 from saml2.sigver import pre_encryption_part, ASSERT_XPATH, EncryptError
@@ -30,13 +31,13 @@ def test_pre_enc():
 
 
 def test_reshuffle_response():
-    server = Server("idp_conf")
-    name_id = server.ident.transient_nameid(
-        "urn:mace:example.com:saml:roland:sp", "id12")
+    with closing(Server("idp_conf")) as server:
+        name_id = server.ident.transient_nameid(
+            "urn:mace:example.com:saml:roland:sp", "id12")
 
-    resp_ = server.create_authn_response(
-        IDENTITY, "id12", "http://lingon.catalogix.se:8087/",
-        "urn:mace:example.com:saml:roland:sp", name_id=name_id)
+        resp_ = server.create_authn_response(
+            IDENTITY, "id12", "http://lingon.catalogix.se:8087/",
+            "urn:mace:example.com:saml:roland:sp", name_id=name_id)
 
     resp2 = pre_encrypt_assertion(resp_)
 
@@ -45,22 +46,22 @@ def test_reshuffle_response():
 
 
 def test_enc1():
-    server = Server("idp_conf")
-    name_id = server.ident.transient_nameid(
-        "urn:mace:example.com:saml:roland:sp", "id12")
+    with closing(Server("idp_conf")) as server:
+        name_id = server.ident.transient_nameid(
+            "urn:mace:example.com:saml:roland:sp", "id12")
 
-    resp_ = server.create_authn_response(
-        IDENTITY, "id12", "http://lingon.catalogix.se:8087/",
-        "urn:mace:example.com:saml:roland:sp", name_id=name_id)
+        resp_ = server.create_authn_response(
+            IDENTITY, "id12", "http://lingon.catalogix.se:8087/",
+            "urn:mace:example.com:saml:roland:sp", name_id=name_id)
 
     statement = pre_encrypt_assertion(resp_)
 
-    tmpl = "enc_tmpl.xml"
+    tmpl = full_path("enc_tmpl.xml")
     # tmpl_file = open(tmpl, "w")
     # tmpl_file.write("%s" % pre_encryption_part())
     # tmpl_file.close()
 
-    data = "pre_enc.xml"
+    data = full_path("pre_enc.xml")
     # data_file = open(data, "w")
     # data_file.write("%s" % statement)
     # data_file.close()
@@ -82,13 +83,13 @@ def test_enc1():
 def test_enc2():
     crypto = CryptoBackendXmlSec1(xmlsec_path)
 
-    server = Server("idp_conf")
-    name_id = server.ident.transient_nameid(
-        "urn:mace:example.com:saml:roland:sp", "id12")
+    with closing(Server("idp_conf")) as server:
+        name_id = server.ident.transient_nameid(
+            "urn:mace:example.com:saml:roland:sp", "id12")
 
-    resp_ = server.create_authn_response(
-        IDENTITY, "id12", "http://lingon.catalogix.se:8087/",
-        "urn:mace:example.com:saml:roland:sp", name_id=name_id)
+        resp_ = server.create_authn_response(
+            IDENTITY, "id12", "http://lingon.catalogix.se:8087/",
+            "urn:mace:example.com:saml:roland:sp", name_id=name_id)
 
     enc_resp = crypto.encrypt_assertion(resp_, full_path("pubkey.pem"),
                                         pre_encryption_part())
 
@@ -1,5 +1,6 @@
 #!/usr/bin/env python
 # -*- coding: utf-8 -*-
+from contextlib import closing
 from saml2.authn_context import INTERNETPROTOCOLPASSWORD
 
 from saml2.server import Server
@@ -28,37 +29,37 @@ def _eq(l1, l2):
 
 class TestAuthnResponse:
     def setup_class(self):
-        server = Server(dotname("idp_conf"))
-        name_id = server.ident.transient_nameid(
-                            "urn:mace:example.com:saml:roland:sp","id12")
-
-        self._resp_ = server.create_authn_response(
-                            IDENTITY,
-                            "id12",                       # in_response_to
-                            "http://lingon.catalogix.se:8087/",   # consumer_url
-                            "urn:mace:example.com:saml:roland:sp", # sp_entity_id
-                            name_id=name_id,
-                            authn=AUTHN)
-                
-        self._sign_resp_ = server.create_authn_response(
-                            IDENTITY,
-                            "id12",                       # in_response_to
-                            "http://lingon.catalogix.se:8087/",   # consumer_url
-                            "urn:mace:example.com:saml:roland:sp", # sp_entity_id
-                            name_id=name_id, sign_assertion=True,
-                            authn=AUTHN)
-
-        self._resp_authn = server.create_authn_response(
-                            IDENTITY,
-                            "id12",                       # in_response_to
-                            "http://lingon.catalogix.se:8087/",   # consumer_url
-                            "urn:mace:example.com:saml:roland:sp", # sp_entity_id
-                            name_id=name_id,
-                            authn=AUTHN)
-
-        self.conf = config_factory("sp", dotname("server_conf"))
-        self.conf.only_use_keys_in_metadata = False
-        self.ar = authn_response(self.conf, "http://lingon.catalogix.se:8087/")
+        with closing(Server(dotname("idp_conf"))) as server:
+            name_id = server.ident.transient_nameid(
+                                "urn:mace:example.com:saml:roland:sp","id12")
+
+            self._resp_ = server.create_authn_response(
+                                IDENTITY,
+                                "id12",                       # in_response_to
+                                "http://lingon.catalogix.se:8087/",   # consumer_url
+                                "urn:mace:example.com:saml:roland:sp", # sp_entity_id
+                                name_id=name_id,
+                                authn=AUTHN)
+
+            self._sign_resp_ = server.create_authn_response(
+                                IDENTITY,
+                                "id12",                       # in_response_to
+                                "http://lingon.catalogix.se:8087/",   # consumer_url
+                                "urn:mace:example.com:saml:roland:sp", # sp_entity_id
+                                name_id=name_id, sign_assertion=True,
+                                authn=AUTHN)
+
+            self._resp_authn = server.create_authn_response(
+                                IDENTITY,
+                                "id12",                       # in_response_to
+                                "http://lingon.catalogix.se:8087/",   # consumer_url
+                                "urn:mace:example.com:saml:roland:sp", # sp_entity_id
+                                name_id=name_id,
+                                authn=AUTHN)
+
+            self.conf = config_factory("sp", dotname("server_conf"))
+            self.conf.only_use_keys_in_metadata = False
+            self.ar = authn_response(self.conf, "http://lingon.catalogix.se:8087/")
 
     def test_verify_1(self):
         xml_response = "%s" % (self._resp_,)
@@ -128,4 +129,4 @@ def test_verify_w_authn(self):
 if __name__ == "__main__":
     t = TestAuthnResponse()
     t.setup_class()
-    t.test_verify_1()
+    t.test_verify_1()