Python CertificateRequest示例

示例#1

文件： authority.py 项目： tomprince/deed

 def signRequest(self, subject):
     log.msg(format='Signing certificate for %(name)s',
             name=subject)
     reqPath = self.csrPath.child(subject)
     if not reqPath.exists():
         raise Exception
     req = CertificateRequest.loadPEM(reqPath.getContent())
     cert = self.cert.signRequestObject(req, genSerial(subject), digestAlgorithm='sha512')
     certPath = self.publicPath.child(subject)
     certPath.setContent(cert.dumpPEM())
     certPath.chmod(0644)
     return cert

示例#2

文件： test_identity.py 项目： zhp1254/vertex

    def test_cannotSign(self):
        """
        Vertex nodes with no portal will not sign cert requests.
        """
        cr = CertificateRequest.load(makeCertRequest("example.com"))
        class FakeService(object):
            portal = None

        q = Q2Q()
        q.service = FakeService()

        d = callResponder(q, Sign,
                          certificate_request=cr,
                          password='******')
        self.failureResultOf(d, amp.RemoteAmpError)

示例#3

文件： test_identity.py 项目： zhp1254/vertex

    def test_sign(self):
        """
        'Sign' messages with a cert request result in a cred login with
        the given password. The avatar returned is then asked to sign
        the cert request with the presence server's certificate. The
        resulting certificate is returned as a response.
        """
        user = '******'
        passwd = 'hunter2'

        issuerName = "fake certificate"
        domainCert = makeCert(issuerName)

        class FakeAvatar(object):
            def signCertificateRequest(fa, certificateRequest, hostcert,
                                       suggestedSerial):
                self.assertEqual(hostcert, domainCert)
                return hostcert.signRequestObject(certificateRequest,
                                                  suggestedSerial)

        class FakeStorage(object):
            def getPrivateCertificate(cs, subject):
                return domainCert

            def genSerial(cs, domain):
                return 1

        cr = CertificateRequest.load(makeCertRequest(user))
        class FakePortal(object):
            def login(fp, creds, proto, iface):
                self.assertEqual(iface, IQ2QUser)
                self.assertEqual(creds.username, user)
                self.assertEqual(creds.password, passwd)
                return succeed([None, FakeAvatar(), None])

        class FakeService(object):
            portal = FakePortal()
            certificateStorage = FakeStorage()

        q = Q2Q()
        q.service = FakeService()

        d = callResponder(q, Sign,
                          certificate_request=cr,
                          password=passwd)
        response = self.successResultOf(d)
        self.assertEqual(response['certificate'].getIssuer().commonName,
                         issuerName)

示例#4

文件： authority.py 项目： tomprince/deed

 def submitCertificateRequest(self, request):
     request = CertificateRequest.loadPEM(request)
     return (self.store.submitCertificateRequest(request)
             .addCallback(lambda _: {}))