def create_file(store, cls, raw_key):
db_cfg = load_tls_dict(store)
db_cfg['ssl_key'] = raw_key
prv_fact = PrivateFactory(store)
pkv = cls.validator()
ok, _ = pkv.validate(db_cfg)
if ok:
prv_fact.set_val(u'https_priv_key', raw_key)
prv_fact.set_val(u'https_priv_gen', False)
return ok
def create_file(store, cls, raw_chain):
prv_fact = PrivateFactory(store)
db_cfg = load_tls_dict(store)
db_cfg['ssl_intermediate'] = raw_chain
cv = cls.validator()
ok, _ = cv.validate(db_cfg)
if ok:
prv_fact.set_val(u'https_chain', raw_chain)
return ok
def try_to_enable_https(store):
prv_fact = PrivateFactory(store)
cv = tls.ChainValidator()
db_cfg = load_tls_dict(store)
db_cfg['https_enabled'] = False
ok, err = cv.validate(db_cfg)
if ok:
prv_fact.set_val('https_enabled', True)
GLSettings.memory_copy.private.https_enabled = True
else:
raise err
def create_file(store, cls, raw_chain):
prv_fact = PrivateFactory(store)
db_cfg = load_tls_dict(store)
db_cfg['ssl_intermediate'] = raw_chain
cv = cls.validator()
ok, err = cv.validate(db_cfg)
if ok:
prv_fact.set_val('https_chain', raw_chain)
else:
log.debug('Chain validation failed')
return ok
def create_file(store, cls, raw_cert):
prv_fact = PrivateFactory(store)
db_cfg = load_tls_dict(store)
db_cfg['ssl_cert'] = raw_cert
cv = cls.validator()
ok, err = cv.validate(db_cfg)
if ok:
prv_fact.set_val('https_cert', raw_cert)
else:
log.err("Cert validation failed")
return ok
def try_to_enable_https(store):
prv_fact = PrivateFactory(store)
cv = tls.ChainValidator()
db_cfg = load_tls_dict(store)
db_cfg['https_enabled'] = False
ok, err = cv.validate(db_cfg)
if ok:
prv_fact.set_val(u'https_enabled', True)
State.tenant_cache[1].private.https_enabled = True
else:
raise err
def create_file(store, cls, raw_cert):
prv_fact = PrivateFactory(store)
db_cfg = load_tls_dict(store)
db_cfg['ssl_cert'] = raw_cert
cv = cls.validator()
ok, _ = cv.validate(db_cfg)
if ok:
prv_fact.set_val(u'https_cert', raw_cert)
State.tenant_cache[1].https_cert = raw_cert
return ok
def create_file(store, cls, raw_key):
db_cfg = load_tls_dict(store)
db_cfg['ssl_key'] = raw_key
prv_fact = PrivateFactory(store)
pkv = cls.validator()
ok, err = pkv.validate(db_cfg)
if ok:
prv_fact.set_val('https_priv_key', raw_key)
prv_fact.set_val('https_priv_gen', False)
else:
log.debug('Key validation failed')
return ok
def perform_action(store, csr_fields):
db_cfg = load_tls_dict(store)
pkv = tls.PrivKeyValidator()
ok, err = pkv.validate(db_cfg)
if not ok or not err is None:
raise err
key_pair = db_cfg['ssl_key']
try:
csr_txt = tls.gen_x509_csr_pem(key_pair, csr_fields, GLSettings.csr_sign_bits)
log.debug("Generated a new CSR")
return csr_txt
except Exception as e:
log.err(e)
raise errors.ValidationError('CSR gen failed')
def db_maybe_launch_https_workers(self, store):
privFact = PrivateFactory(store)
on = privFact.get_val('https_enabled')
if not on:
log.info("Not launching workers")
yield defer.succeed(None)
return
db_cfg = load_tls_dict(store)
self.tls_cfg.update(db_cfg)
chnv = tls.ChainValidator()
ok, err = chnv.validate(db_cfg, must_be_disabled=False)
if ok and err is None:
log.info("Decided to launch https workers")
yield self.launch_https_workers()
else:
log.info("Not launching https workers due to %s" % err)
yield defer.fail(err)
