def bind_certkey(u):
s = sslvserver_sslcertkey_binding()
s.vservername='cs_sni.o.e'
s.certkeyname='sni_%s' %u
s.snicert=True
try:
sslvserver_sslcertkey_binding.add(session,s)
except nitro_exception as e:
print("Exception::errorcode="+str(e.errorcode)+",message="+ e.message)
def BindServerCert(self, certname):
ret = True
ckey = sslvserver_sslcertkey_binding.sslvserver_sslcertkey_binding()
try:
ckey.vservername = server
ckey.certkeyname = certkey
sslvserver_sslcertkey_binding.add(self.sess, ckey)
except NITROEXCEPTION.nitro_exception as e:
ret = False
return ret
def BindSSLCertkey(self) :
ci = CertInstall()
certlist = ci.ListServerCerts()
if not self.sslvserverlist or (len(self.sslvserverlist) != len(certlist)) :
print 'Cannot BindSSLCertkey : Vserver/Certkey mismatch. Need {} number vservers'.format(len(certlist))
return 0
bindings = [(self.sslvserverlist[i].vservername,certlist[i][0]) for i in range(len(self.sslvserverlist))]
blist = []
for b in bindings :
B = SSLVSRVRCERTKEYBINDING.sslvserver_sslcertkey_binding()
B.vservername = b[0]
B.certkeyname = b[1]
blist.append(B)
SSLVSRVRCERTKEYBINDING.sslvserver_sslcertkey_binding.add(self.session,blist)
def ssl_certkey_bindings_sync():
vservername = module.params['name']
if sslvserver_sslcertkey_binding.count(client, vservername) == 0:
bindings = []
else:
bindings = sslvserver_sslcertkey_binding.get(client, vservername)
log('bindings len is %s' % len(bindings))
# Delete existing bindings
for binding in bindings:
sslvserver_sslcertkey_binding.delete(client, binding)
# Add binding if appropriate
if module.params['ssl_certkey'] is not None:
binding = sslvserver_sslcertkey_binding()
binding.vservername = module.params['name']
binding.certkeyname = module.params['ssl_certkey']
sslvserver_sslcertkey_binding.add(client, binding)
def bindsslvs_cert (self, client) :
try :
lbvs = lbvserver()
lbvs.name = "ssl_vs"
lbvs.servicetype = lbvserver.Servicetype.SSL
lbvs.ipv46 = "1.1.1.1"
lbvs.port = 443
lbvserver.add(client, lbvs)
obj = [sslvserver_sslcertkey_binding() for _ in range(2)]
obj[0].vservername = "ssl_vs"
obj[0].certkeyname = "xx"
obj[1].vservername = "ssl_vs"
obj[1].certkeyname = "yy"
sslvserver_sslcertkey_binding.add(client, obj)
print("bindsslvs_cert - Done")
except nitro_exception as e :
print("Exception::bindsslvs_cert::errorcode="+str(e.errorcode)+",message="+ e.message)
except Exception as e:
print("Exception::bindsslvs_cert::message="+str(e.args))
def ssl_certkey_bindings_sync(client, module):
log('Syncing certkey bindings')
vservername = module.params['name']
if sslvserver_sslcertkey_binding.count(client, vservername) == 0:
bindings = []
else:
bindings = sslvserver_sslcertkey_binding.get(client, vservername)
# Delete existing bindings
for binding in bindings:
log('Deleting existing binding for certkey %s' % binding.certkeyname)
sslvserver_sslcertkey_binding.delete(client, binding)
# Add binding if appropriate
if module.params['ssl_certkey'] is not None:
log('Adding binding for certkey %s' % module.params['ssl_certkey'])
binding = sslvserver_sslcertkey_binding()
binding.vservername = module.params['name']
binding.certkeyname = module.params['ssl_certkey']
sslvserver_sslcertkey_binding.add(client, binding)
def ssl_certkey_bindings_sync(client, module):
log('Syncing certkey bindings')
vservername = module.params['name']
if sslvserver_sslcertkey_binding.count(client, vservername) == 0:
bindings = []
else:
bindings = sslvserver_sslcertkey_binding.get(client, vservername)
# Delete existing bindings
for binding in bindings:
log('Deleting existing binding for certkey %s' % binding.certkeyname)
sslvserver_sslcertkey_binding.delete(client, binding)
# Add binding if appropriate
if module.params['ssl_certkey'] is not None:
log('Adding binding for certkey %s' % module.params['ssl_certkey'])
binding = sslvserver_sslcertkey_binding()
binding.vservername = module.params['name']
binding.certkeyname = module.params['ssl_certkey']
sslvserver_sslcertkey_binding.add(client, binding)
