def generate_all_keys(custodia_conf): parser = configparser.ConfigParser( interpolation=configparser.ExtendedInterpolation() ) with open(custodia_conf) as f: parser.read_file(f) filename = parser.get('store:encgen', 'master_key') key = jwk.JWK(generate='oct', size=256) with open(filename, 'w+') as keyfile: keyfile.write(key.export()) store = SqliteStore(parser, 'store:simple') srv_kid = "srvkid" cli_kid = "clikid" ss_key = jwk.JWK(generate='RSA', kid=srv_kid, use="sig") se_key = jwk.JWK(generate='RSA', kid=srv_kid, use="enc") store.set('kemkeys/sig/%s' % srv_kid, ss_key.export()) store.set('kemkeys/enc/%s' % srv_kid, se_key.export()) cs_key = jwk.JWK(generate='RSA', kid=cli_kid, use="sig") ce_key = jwk.JWK(generate='RSA', kid=cli_kid, use="enc") store.set('kemkeys/sig/%s' % cli_kid, cs_key.export_public()) store.set('kemkeys/enc/%s' % cli_kid, ce_key.export_public()) return ([ss_key.export_public(), se_key.export_public()], [cs_key.export(), ce_key.export()])
def setUpClass(cls): cls.tmpdir = tempfile.mkdtemp() cls.parser = configparser.ConfigParser( interpolation=configparser.ExtendedInterpolation(), defaults={'tmpdir': cls.tmpdir}) cls.parser.read_string(CONFIG) cls.backing_store = SqliteStore(cls.parser, 'store:teststore')
def setUpClass(cls): cls.parser = configparser.ConfigParser( interpolation=configparser.ExtendedInterpolation()) cls.parser.read_string(CONFIG) cls.log_handlers = log.auditlog.logger.handlers[:] log.auditlog.logger.handlers = [logging.NullHandler()] cls.secrets = Secrets(cls.parser, 'authz:secrets') cls.secrets.root.store = SqliteStore(cls.parser, 'store:sqlite') cls.authz = UserNameSpace(cls.parser, 'authz:user')
def setUpClass(cls): config = {'server_keys': test_keys[0]['kid']} with open('examples/client_enc.key') as f: data = f.read() cls.client_keys = json_decode(data) cls.kk = KEMKeysStore(config) cls.kk.store = SqliteStore({'dburi': 'kemtests.db'}) _store_keys(cls.kk.store, KEY_USAGE_SIG, test_keys) _store_keys(cls.kk.store, KEY_USAGE_ENC, test_keys) _store_keys(cls.kk.store, KEY_USAGE_SIG, cls.client_keys) _store_keys(cls.kk.store, KEY_USAGE_ENC, cls.client_keys)
def generate_all_keys(custodia_conf): parser = configparser.ConfigParser( interpolation=configparser.ExtendedInterpolation()) with open(custodia_conf) as f: parser.read_file(f) filename = parser.get('store:encgen', 'master_key') key = jwk.JWK(generate='oct', size=256) with open(filename, 'w+') as keyfile: keyfile.write(key.export()) store = SqliteStore(parser, 'store:simple') srv_kid = "srvkid" cli_kid = "clikid" ss_key = jwk.JWK(generate='RSA', kid=srv_kid, use="sig") se_key = jwk.JWK(generate='RSA', kid=srv_kid, use="enc") store.set('kemkeys/sig/%s' % srv_kid, ss_key.export()) store.set('kemkeys/enc/%s' % srv_kid, se_key.export()) cs_key = jwk.JWK(generate='RSA', kid=cli_kid, use="sig") ce_key = jwk.JWK(generate='RSA', kid=cli_kid, use="enc") store.set('kemkeys/sig/%s' % cli_kid, cs_key.export_public()) store.set('kemkeys/enc/%s' % cli_kid, ce_key.export_public()) return ([ss_key.export_public(), se_key.export_public()], [cs_key.export(), ce_key.export()])
def setUpClass(cls): cls.parser = configparser.ConfigParser( interpolation=configparser.ExtendedInterpolation()) cls.parser.read_string(CONFIG) config = {'server_keys': test_keys[0]['kid']} with open('examples/client_enc.key') as f: data = f.read() cls.client_keys = json_decode(data) cls.kk = kem.KEMKeysStore(config) cls.kk.store = SqliteStore(cls.parser, 'store:sqlite') _store_keys(cls.kk.store, kem.KEY_USAGE_SIG, test_keys) _store_keys(cls.kk.store, kem.KEY_USAGE_ENC, test_keys) _store_keys(cls.kk.store, kem.KEY_USAGE_SIG, cls.client_keys) _store_keys(cls.kk.store, kem.KEY_USAGE_ENC, cls.client_keys)
def generate_all_keys(filename): key = jwk.JWK(generate='oct', size=256) with open(filename, 'w+') as keyfile: keyfile.write(key.export()) srv_kid = "srvkid" cli_kid = "clikid" ss_key = jwk.JWK(generate='RSA', kid=srv_kid, use="sig") se_key = jwk.JWK(generate='RSA', kid=srv_kid, use="enc") store = SqliteStore({'dburi': 'test_secrets.db', 'table': 'secrets'}) store.set('kemkeys/sig/%s' % srv_kid, ss_key.export()) store.set('kemkeys/enc/%s' % srv_kid, se_key.export()) cs_key = jwk.JWK(generate='RSA', kid=cli_kid, use="sig") ce_key = jwk.JWK(generate='RSA', kid=cli_kid, use="enc") store = SqliteStore({'dburi': 'test_secrets.db', 'table': 'secrets'}) store.set('kemkeys/sig/%s' % cli_kid, cs_key.export_public()) store.set('kemkeys/enc/%s' % cli_kid, ce_key.export_public()) return ([ss_key.export_public(), se_key.export_public()], [cs_key.export(), ce_key.export()])
def generate_all_keys(filename): key = jwk.JWK(generate="oct", size=256) with open(filename, "w+") as keyfile: keyfile.write(key.export()) srv_kid = "srvkid" cli_kid = "clikid" ss_key = jwk.JWK(generate="RSA", kid=srv_kid, use="sig") se_key = jwk.JWK(generate="RSA", kid=srv_kid, use="enc") store = SqliteStore({"dburi": "test_secrets.db", "table": "secrets"}) store.set("kemkeys/sig/%s" % srv_kid, ss_key.export()) store.set("kemkeys/enc/%s" % srv_kid, se_key.export()) cs_key = jwk.JWK(generate="RSA", kid=cli_kid, use="sig") ce_key = jwk.JWK(generate="RSA", kid=cli_kid, use="enc") store = SqliteStore({"dburi": "test_secrets.db", "table": "secrets"}) store.set("kemkeys/sig/%s" % cli_kid, cs_key.export_public()) store.set("kemkeys/enc/%s" % cli_kid, ce_key.export_public()) return ([ss_key.export_public(), se_key.export_public()], [cs_key.export(), ce_key.export()])
def setUpClass(cls): cls.secrets = Secrets({'auditlog': 'test.audit.log'}) cls.secrets.root.store = SqliteStore({'dburi': 'testdb.sqlite'}) cls.authz = Namespaces({})
def setUpClass(cls): cls.log_handlers = log.auditlog.logger.handlers[:] log.auditlog.logger.handlers = [logging.NullHandler()] cls.secrets = Secrets() cls.secrets.root.store = SqliteStore({'dburi': 'testdb.sqlite'}) cls.authz = UserNameSpace({})
revocation_reason=self.revocation_reason, ) return certs if __name__ == '__main__': from custodia.compat import configparser from custodia.log import setup_logging from custodia.store.sqlite import SqliteStore parser = configparser.ConfigParser( interpolation=configparser.ExtendedInterpolation()) parser.read_string(u""" [auth:ipa] handler = IPAInterface [store:sqlite] handler = SqliteStore dburi = /tmp/test.sqlite [store:ipa_certreq] handler = IPAVault backing_store = sqlite """) setup_logging(debug=True, auditfile=None) IPAInterface(parser, 'auth:ipa') s = IPACertRequest(parser, 'store:ipa_certreq') s.store = SqliteStore(parser, 'store:sqlite') print(s.get('HTTP/client1.ipa.example')) print(s.get('HTTP/client1.ipa.example')) print(s.cut('HTTP/client1.ipa.example'))