def main(opts):
# lets read in the existing cert if it exists.
# gets us existing acc info
if not opts.username:
try:
username = fedora_cert.read_user_cert()
except:
print "Can't determine fas name, lets get a new cert"
fedora_cert.create_user_cert(None)
sys.exit(0)
else:
username = opts.username
#has cert expired? do we force a new cert? get a new one
if opts.newcert:
print "Getting a new User Certificate"
fedora_cert.create_user_cert(username)
sys.exit(0)
if fedora_cert.certificate_expired():
print "Certificate has expired, getting a new one"
fedora_cert.create_user_cert(username)
sys.exit(0)
if opts.verifycert:
print "Verifying Certificate"
fedora_cert.verify_cert()
print "CRL Checking not implemented yet"
except fedora_cert.fedora_cert_error, e:
print e
sys.exit(1)
sys.exit(0)
if fedora_cert.certificate_expired():
print "Certificate has expired, getting a new one"
try:
fedora_cert.create_user_cert(username)
except fedora_cert.fedora_cert_error, e:
print e
sys.exit(1)
sys.exit(0)
if opts.verifycert:
print "Verifying Certificate"
try:
fedora_cert.verify_cert()
except fedora_cert.fedora_cert_error, e:
print e
sys.exit(1)
print "CRL Checking not implemented yet"
if __name__ == '__main__':
opt_p = optparse.OptionParser(usage="%prog [OPTIONS] ")
opt_p.add_option('-u', '--username', action='store', dest='username',
default=False, help="FAS Username.")
opt_p.add_option('-n', '--new-cert', action='store_true', dest='newcert',
default=False, help="Generate a new Fedora Certificate.")
opt_p.add_option('-v', '--verify-cert', action='store_true', dest='verifycert',
default=False, help="Verify Certificate.")
(opts, args) = opt_p.parse_args()