Python CACreateDTO示例

编程语言: Python

命名空间/包名称: barbican.plugin.interface.certificate_manager

方法/功能: CACreateDTO

hotexamples.com的示例: 3

Python CACreateDTO - 已找到3个示例。这些是从开源项目中提取的最受好评的barbican.plugin.interface.certificate_manager.CACreateDTO现实Python示例。您可以评价示例，以帮助我们提高示例质量。

示例#1

显示文件

文件： test_snakeoil_ca.py 项目： bopopescu/OpenStack-Ocata

 def _create_subca(self):
     create_ca_dto = cm.CACreateDTO(
         name="sub ca1",
         description="subordinate ca",
         subject_dn="cn=subordinate ca signing cert, o=example.com",
         parent_ca_id=self.plugin.get_default_ca_name())
     return self.plugin.create_ca(create_ca_dto)

示例#2

显示文件

文件： test_snakeoil_ca.py 项目： bopopescu/OpenStack-Ocata

    def test_raises_invalid_parent_id_passed_in(self):
        create_ca_dto = cm.CACreateDTO(
            name="sub ca1",
            description="subordinate ca",
            subject_dn="cn=subordinate ca signing cert, o=example.com",
            parent_ca_id="foo")

        self.assertRaises(cm.CertificateGeneralException,
                          self.plugin.create_ca, create_ca_dto)

示例#3

显示文件

def create_subordinate_ca(project_model, name, description, subject_dn,
                          parent_ca_ref, creator_id):
    """Create a subordinate CA

    :param name - name of the subordinate CA
    :param: description - description of the subordinate CA
    :param: subject_dn - subject DN of the subordinate CA
    :param: parent_ca_ref - Barbican URL reference to the parent CA
    :param: creator_id - id for creator of the subordinate CA
    :return: :class models.CertificateAuthority model object for new sub CA
    """
    # check that the parent ref exists and is accessible
    parent_ca_id = hrefs.get_ca_id_from_ref(parent_ca_ref)
    ca_repo = repos.get_ca_repository()
    parent_ca = ca_repo.get(entity_id=parent_ca_id, suppress_exception=True)
    if not parent_ca:
        raise excep.InvalidParentCA(parent_ca_ref=parent_ca_ref)

    # Parent CA must be a base CA or a subCA owned by this project
    if (parent_ca.project_id is not None and
            parent_ca.project_id != project_model.id):
        raise excep.UnauthorizedSubCA()

    # get the parent plugin, raises CertPluginNotFound if missing
    cert_plugin = cert.CertificatePluginManager().get_plugin_by_name(
        parent_ca.plugin_name)

    # confirm that the plugin supports creating subordinate CAs
    if not cert_plugin.supports_create_ca():
        raise excep.SubCAsNotSupported()

    # make call to create the subordinate ca
    create_ca_dto = cert.CACreateDTO(
        name=name,
        description=description,
        subject_dn=subject_dn,
        parent_ca_id=parent_ca.plugin_ca_id)

    new_ca_dict = cert_plugin.create_ca(create_ca_dto)
    if not new_ca_dict:
        raise excep.SubCANotCreated(name=name)

    # create and store the subordinate CA as a new certificate authority object
    new_ca_dict['plugin_name'] = parent_ca.plugin_name
    new_ca_dict['creator_id'] = creator_id
    new_ca_dict['project_id'] = project_model.id
    new_ca = models.CertificateAuthority(new_ca_dict)
    ca_repo.create_from(new_ca)

    return new_ca