/usr/lib/python2.7/dist-packages/magnum/common/cert_manager/x509keypair_cert_manager.py is in python-magnum 3.1.1-5.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 | # Copyright (c) 2016 Intel, Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
# a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
# License for the specific language governing permissions and limitations
# under the License.
from magnum.common.cert_manager import cert_manager
from magnum import objects
class Cert(cert_manager.Cert):
"""Representation of a Cert for Magnum DB storage."""
def __init__(self, certificate, private_key, intermediates=None,
private_key_passphrase=None):
self.certificate = certificate
self.intermediates = intermediates
self.private_key = private_key
self.private_key_passphrase = private_key_passphrase
def get_certificate(self):
return self.certificate
def get_intermediates(self):
return self.intermediates
def get_private_key(self):
return self.private_key
def get_private_key_passphrase(self):
return self.private_key_passphrase
class CertManager(cert_manager.CertManager):
"""Cert Manager Interface that stores data locally in Magnum db.
"""
@staticmethod
def store_cert(certificate, private_key, intermediates=None,
private_key_passphrase=None, context=None, **kwargs):
"""Stores (i.e., registers) a cert with the cert manager.
This method stores the specified cert to x509keypair model and returns
a UUID that can be used to retrieve it.
:param certificate: PEM encoded TLS certificate
:param private_key: private key for the supplied certificate
:param intermediates: ordered and concatenated intermediate certs
:param private_key_passphrase: optional passphrase for the supplied key
:returns: the UUID of the stored cert
"""
x509keypair = {'certificate': certificate, 'private_key': private_key,
'private_key_passphrase': private_key_passphrase,
'intermediates': intermediates,
'project_id': context.project_id,
'user_id': context.user_id}
x509keypair_obj = objects.X509KeyPair(context, **x509keypair)
x509keypair_obj.create()
return x509keypair_obj.uuid
@staticmethod
def get_cert(cert_ref, context=None, **kwargs):
"""Retrieves the specified cert.
:param cert_ref: the UUID of the cert to retrieve
:return: magnum.common.cert_manager.cert_manager.Cert
representation of the certificate data
"""
cert_data = dict()
x509keypair_obj = objects.X509KeyPair.get_by_uuid(context, cert_ref)
cert_data['certificate'] = x509keypair_obj.certificate
cert_data['private_key'] = x509keypair_obj.private_key
cert_data['private_key_passphrase'] = \
x509keypair_obj.private_key_passphrase
cert_data['intermediates'] = x509keypair_obj.intermediates
return Cert(**cert_data)
@staticmethod
def delete_cert(cert_ref, context=None, **kwargs):
"""Deletes the specified cert.
:param cert_ref: the UUID of the cert to delete
"""
x509keypair_obj = objects.X509KeyPair.get_by_uuid(context, cert_ref)
x509keypair_obj.destroy()
|