LILiK
/
ca_manager
5
0
Fork 0
Code Issues 0 Pull Requests 2 Releases 0 Wiki Activity
Easy CA management
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
226 Commits
7 Branches
218 KiB
Tree: aab7b5b900
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'aab7b5b900'
${ noResults }
ca_manager/bin/ca-server

109 lines
2.7 KiB
Raw Normal View History

Added request_server.
9 years ago
validate hostname as a fqdn
7 years ago
Bugfixes.
9 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
extract scripts from package and add them to setup file
7 years ago
move request_server.py paths in paths.py
8 years ago
fix whitespaces and indentations
7 years ago
add docs to modules
8 years ago
fix whitespaces and indentations
7 years ago
add docs to modules
8 years ago
change log to file only
8 years ago
fix whitespaces and indentations
7 years ago
change log to file only
8 years ago
fix syntax error
8 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
implemet logging for request server
8 years ago
set failure state on exit
8 years ago
Added request_server.
9 years ago
fix whitespaces and indentations
7 years ago
Added request_server.
9 years ago
implemet logging for request server
8 years ago
Bugfixes.
9 years ago
set failure state on exit
8 years ago
Bugfixes.
9 years ago
implemet logging for request server
8 years ago
set failure state on exit
8 years ago
Bugfixes.
9 years ago
Added request_server.
9 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
-Add slash's code for ssh_host key support -Add cli argument to request-server.py to let non interactive ssh session works
9 years ago
Added request_server.
9 years ago
-Add slash's code for ssh_host key support -Add cli argument to request-server.py to let non interactive ssh session works
9 years ago
enhance format handling
7 years ago
implemet logging for request server
8 years ago
-Add slash's code for ssh_host key support -Add cli argument to request-server.py to let non interactive ssh session works
9 years ago
Added request_server.
9 years ago
fix typo in debug message
8 years ago
set log before exit call
8 years ago
Added request_server.
9 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
enhance format handling
7 years ago
Added request_server.
9 years ago
validate hostname as a fqdn
7 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
set log before exit call
8 years ago
fix whitespaces and indentations
7 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
enhance format handling
7 years ago
Added request_server.
9 years ago
set log before exit call
8 years ago
fix whitespaces and indentations
7 years ago
implemet logging for request server
8 years ago
Added request_server.
9 years ago
implemet logging for request server
8 years ago
set log before exit call
8 years ago
Added request_server.
9 years ago
 
  1. #!/usr/bin/env python3
  2. 

  3. from fqdn import FQDN
  4. import json
  5. import logging
  6. import os.path
  7. import sys
  8. import time
  9. import uuid
  10. 

  11. from ca_manager.paths import *
  12. 

  13. __doc__ = """
  14. Procedure to spawn a shell for automation, used by Ansible
  15. """
  16. 

  17. logfile = os.path.join(REQUEST_USER_HOME, 'request_server.log')
  18. 

  19. logging.basicConfig(
  20.         filename=logfile,
  21.         format='%(asctime)s - %(name)s - %(levelname)s - %(message)s',
  22.         level=logging.INFO,
  23.         )
  24. 

  25. logger = logging.getLogger('request_server')
  26. 

  27. 

  28. def exit_good(response):
  29.     logger.info('JSON accepted, send ok')
  30.     response['failed'] = False
  31.     response['status'] = 'ok'
  32.     print(json.dumps(response))
  33.     sys.exit(0)
  34. 

  35. 

  36. def exit_bad(reason):
  37.     logger.info('JSON rejected, send error; error %s', reason)
  38.     response = {
  39.         'failed': True,
  40.         'status': 'error',
  41.         'reason': reason,
  42.         'msg': reason,
  43.     }
  44.     print(json.dumps(response))
  45.     sys.exit(0)
  46. 

  47. 

  48. def main():
  49. 

  50.     logger.info('Shell started')
  51. 

  52.     response = {}
  53. 

  54.     if (len(sys.argv) > 2):
  55.         request_data = sys.argv[2]
  56.     else:
  57.         request_data = sys.stdin.read(10000)
  58. 

  59.     logger.info('Got request data: <%s>', (request_data,))
  60. 

  61.     try:
  62.         metarequest = json.loads(request_data)
  63.         assert 'type' in metarequest
  64.     except:
  65.         logger.info('"type" key not found in request')
  66.         logger.info('Stopping shell')
  67.         exit_bad('bad_json')
  68. 

  69.     if metarequest['type'] == 'sign_request':
  70.         logger.info('Got a sign request')
  71.         request = metarequest['request']
  72.         request_id = str(uuid.uuid4())
  73.         logger.info('Request id %s', (request_id,))
  74. 

  75.         if request['keyType'].endswith('_host'):
  76.             if not FQDN(request['hostName']).is_valid:
  77.                 exit_bad('bad FQDN: <%s>' % (request['hostName'],))
  78. 

  79.         logger.info('Writing request to target directory')
  80.         with open(os.path.join(REQUESTS_PATH, request_id), 'w') as stream:
  81.             stream.write(json.dumps(request))
  82. 

  83.         logger.info('Stopping shell')
  84.         exit_good({'requestID': request_id})
  85. 

  86.     elif metarequest['type'] == 'get_certificate':
  87.         logger.info('Got a GET request')
  88.         request_id = metarequest['requestID']
  89. 

  90.         logger.info('Request id: %s', (request_id,))
  91.         result_path = os.path.join(RESULTS_PATH, request_id)
  92. 

  93.         while not os.path.exists(result_path):
  94.             time.sleep(1)
  95. 

  96.         with open(result_path, 'r') as stream:
  97.             result_data = stream.read()
  98. 

  99.         logger.info('Stopping shell')
  100.         exit_good({'requestID': request_id, 'result': result_data})
  101. 

  102.     else:
  103.         logger.info('Request type not supported: %s', metarequest['type'])
  104.         logger.info('Stopping shell')
  105.         exit_bad('unknown_type')
  106. 

  107. 

  108. if __name__ == '__main__':
  109.     main()