LILiK
/
ca_manager
5
0
Fork 0
Code Issues 0 Pull Requests 2 Releases 0 Wiki Activity
Easy CA management
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
122 Commits
7 Branches
218 KiB
Tree: 33fbeba70b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '33fbeba70b'
${ noResults }
ca_manager/request.py

154 lines
3.9 KiB
Raw Normal View History

moved certificates, requests and authority classes out of ca_manager
8 years ago
add draft for RequestLoader proxy
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
add docs to modules
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
add repr magic to base classes
8 years ago
set truthy values for Requests and Certificates
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
add path property to SignRequest
8 years ago
fix SignRequest path attribute
8 years ago
set destination of public key after certificate has been issued
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
add draft for RequestLoader proxy
8 years ago
remove previous API annotation
8 years ago
add correct Request generation inside RequestLoader
8 years ago
fix wrong data representation when reading JSON
8 years ago
add correct Request generation inside RequestLoader
8 years ago
fix wrong data representation when reading JSON
8 years ago
add correct Request generation inside RequestLoader
8 years ago
add draft for RequestLoader proxy
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
switch from getter to property
8 years ago
moved certificates, requests and authority classes out of ca_manager
8 years ago
 
  1. #!/usr/bin/env python3
  2. # -*- coding: utf-8 -*-
  3. 

  4. import os
  5. import os.path
  6. import sqlite3
  7. import subprocess
  8. import json
  9. 

  10. from paths import *
  11. 

  12. __doc__= """

  13. Module of classes to handle certificate requests
  14. """

  15. 

  16. class SignRequest(object):
  17.     def __init__(self, req_id):
  18.         self.req_id = req_id
  19. 

  20.     def __repr__(self):
  21.         return ( "%s %s" % ( str(self.__class__.__name__), str(self.req_id) ) )
  22. 

  23.     def __bool__(self):
  24.         return os.path.exists(self.path)
  25. 

  26.     @property
  27.     def name(self):
  28.         raise NotImplementedError()
  29. 

  30.     @property
  31.     def fields(self):
  32.         raise NotImplementedError()
  33. 

  34.     @property
  35.     def path(self):
  36.         return os.path.join(REQUESTS_PATH, self.req_id)
  37. 

  38.     @property
  39.     def destination(self):
  40.         return os.path.join(OUTPUT_PATH, self.req_id + '.pub')
  41. 

  42. class RequestLoader(object):
  43.     """

  44.     Context manager that loads a request from a file
  45.     and return a Request type
  46.     """

  47. 

  48.     def __init__(self, request_id):
  49.         self.request_id = request_id
  50.         self.request_dir = REQUESTS_PATH
  51. 

  52.     @property
  53.     def path(self):
  54.         return os.path.join(self.request_dir, self.request_id)
  55. 

  56.     def __enter__(self):
  57.         with open(self.path, 'r') as stream:
  58.             request_data = json.load(
  59.                 stream,
  60.             )
  61. 

  62.             requester = request_data.get('userName', None) or request_data.get('hostName', None)
  63.             root_requested = request_data.get('rootRequested', False)
  64.             key_data = request_data.get('keyData', None)
  65. 

  66.             # attribute cannot be read from
  67.             # json, must add after decoding
  68.             request_id = self.request_id
  69. 

  70.             values = request_data.values()
  71. 

  72.             if 'ssh_user' in values:
  73.                 return UserSSHRequest(
  74.                         request_id,
  75.                         requester,
  76.                         root_requested,
  77.                         key_data,
  78.                         )
  79. 

  80.             elif 'ssh_host' in values:
  81.                 return HostSSHRequest(
  82.                         request_id,
  83.                         requester,
  84.                         key_data,
  85.                         )
  86. 

  87.             elif 'ssl_host' in values:
  88.                 return HostSSLRequest(
  89.                         request_id,
  90.                         requester,
  91.                         key_data,
  92.                         )
  93. 

  94.             else:
  95.                 # ultimate error, cannot be decoded
  96.                 return SignRequest(request_id)
  97.     
  98.     def __exit__(self, exc_type, exc_value, traceback):
  99.         if exc_type is not None:
  100.             print(exc_type, exc_value)
  101.             print(traceback)
  102. 

  103. class UserSSHRequest(SignRequest, object):
  104.     def __init__(self, req_id, user_name, root_requested, key_data):
  105.         super(UserSSHRequest, self).__init__(req_id)
  106. 

  107.         self.user_name = user_name
  108.         self.root_requested = root_requested
  109.         self.key_data = key_data
  110. 

  111.     @property
  112.     def name(self):
  113.         return "User: %s [R:%d]" % (self.user_name, int(self.root_requested))
  114. 

  115.     @property
  116.     def fields(self):
  117.         return [
  118.             ("User name", self.user_name),
  119.             ("Root access requested", 'yes' if self.root_requested else 'no')
  120.         ]
  121. 

  122. class HostSSLRequest(SignRequest, object):
  123.     def __init__(self, req_id, host_name, key_data):
  124.         super(HostSSLRequest, self).__init__(req_id)
  125. 

  126.         self.host_name = host_name
  127.         self.key_data = key_data
  128. 

  129.     @property
  130.     def name(self):
  131.         return "Hostname: %s" % self.host_name
  132. 

  133.     @property
  134.     def fields(self):
  135.         return [
  136.             ("Hostname", self.host_name)
  137.         ]
  138. 

  139. class HostSSHRequest(SignRequest, object):
  140.     def __init__(self, req_id, host_name, key_data):
  141.         super(HostSSHRequest, self).__init__(req_id)
  142. 

  143.         self.host_name = host_name
  144.         self.key_data = key_data
  145. 

  146.     @property
  147.     def name(self):
  148.         return "Hostname: %s" % self.host_name
  149. 

  150.     @property
  151.     def fields(self):
  152.         return [
  153.             ("Hostname", self.host_name)
  154.         ]