Пример #1
0
def _send_signed_request(url, payload, hostname, nonce, headers={'Content-Type': 'application/json'}):
	info = db.recallHost(hostname)
	priv=OpenSSL.crypto.load_privatekey(OpenSSL.crypto.FILETYPE_PEM, base64.b64decode(info['acct_privkey']))
	key=serialization.load_pem_private_key(base64.b64decode(info['acct_privkey']), password=None, backend=default_backend()) 
	header = {
		"alg": "RS256",
		"jwk": jose.JWKRSA(key=jose.ComparableRSAKey(key.public_key())).to_partial_json(),
	}
	payload64 = _b64(json.dumps(payload).encode('utf8'))
	protected64 = _b64(json.dumps({"nonce":nonce}))
	signature64 = _b64(OpenSSL.crypto.sign(priv, str(protected64) + '.' + str(payload64), 'sha256'))
	message=json.dumps({"header":header,"protected":protected64, "payload":payload64, "signature":signature64})
	resp = requests.post(url, data=message, headers=headers)
	return resp
Пример #2
0
		ipaddress = jwt[1]['ipaddr']
		hostname = jwt[1]['hostname']
		alg = jwt[1]['alg']
		secret = jwt[1]['secret']
		privkey = jwt[1]['privkey'] #to be used with LE
	except KeyError, e:
		return 'KeyError', 400

	code, resp=ddns.addDDNSHost(hostname, ipaddress, secret, alg)
	if code!=0:
		return resp, 400
	code, resp=ddns.updateDDNSHost(hostname,ipaddress,secret)
	if code!=0:
		return resp, 400

	info = db.recallHost(hostname)
	if info == None:
		logger.debug('Host not found in DB. Creating new entry')
		db.storeKeypair(hostname, privkey, db.generateKeypair())
		info = db.recallHost(hostname)

	if info['reg_json']==None:
		if not le.Register(info):#201 updateDB
			return 'Error in LetsEncrypt Registration', 400
		info=db.recallHost(hostname)

	if info['authz_json']==None:
		authzStatus=''
	else:
		authzStatus = json.loads(info['authz_json']).get('body').get('status') or None