nik/FreedomBox
1
0
Fork 0
mirror of https://github.com/freedombox/FreedomBox.git synced 2026-05-20 10:34:30 +00:00
Code Issues Packages Projects Releases Wiki Activity

letsencrypt: Implement action to compare copied certificates

Browse Source 
Signed-off-by: Sunil Mohan Adapa <sunil@medhas.org>
Reviewed-by: Joseph Nuthalapati <njoseph@thoughtworks.com>
This commit is contained in:
Sunil Mohan Adapa 2019-07-02 17:00:25 -07:00 committed by Joseph Nuthalapati
parent ebbc9912d2
commit da366636d8
No known key found for this signature in database
GPG Key ID: 5398F00A2FA43C35
1 changed files with 40 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

41
actions/letsencrypt
View File

@ -20,6 +20,7 @@ Configuration helper for Let's Encrypt.
""" """
import argparse import argparse
import filecmp
import glob import glob
import importlib import importlib
import json import json
@ -85,7 +86,22 @@ def parse_arguments():
subparser.add_argument('--source-private-key-path', required=True, subparser.add_argument('--source-private-key-path', required=True,
help='Path to the source private key') help='Path to the source private key')
subparser.add_argument( subparser.add_argument(
'--source certificate-path', required=True, '--source-certificate-path', required=True,
help='Path to the source certificate with public key')
subparser.add_argument('--private-key-path', required=True,
help='Path to the private key')
subparser.add_argument('--certificate-path', required=True,
help='Path to the certificate with public key')
subparser = subparsers.add_parser(
'compare-certificate',
help='Compare LE certificate to one in daemon\'s directory')
subparser.add_argument('--managing-app', required=True,
help='App needing the certificate')
subparser.add_argument('--source-private-key-path', required=True,
help='Path to the source private key')
subparser.add_argument(
'--source-certificate-path', required=True,
help='Path to the source certificate with public key') help='Path to the source certificate with public key')
subparser.add_argument('--private-key-path', required=True, subparser.add_argument('--private-key-path', required=True,
help='Path to the private key') help='Path to the private key')
@ -322,6 +338,29 @@ def subcommand_copy_certificate(arguments):
group=arguments.group_owner) group=arguments.group_owner)
def subcommand_compare_certificate(arguments):
"""Compare LE certificate with an app certificate."""
source_private_key_path = pathlib.Path(arguments.source_private_key_path)
source_certificate_path = pathlib.Path(arguments.source_certificate_path)
_assert_source_directory(source_private_key_path)
_assert_source_directory(source_certificate_path)
private_key_path = pathlib.Path(arguments.private_key_path)
certificate_path = pathlib.Path(arguments.certificate_path)
_assert_managed_path(arguments.managing_app, private_key_path)
_assert_managed_path(arguments.managing_app, certificate_path)
result = False
try:
if filecmp.cmp(source_certificate_path, certificate_path) and \
filecmp.cmp(source_private_key_path, private_key_path):
result = True
except FileNotFoundError:
result = False
print(json.dumps({'result': result}))
def _assert_source_directory(path): def _assert_source_directory(path):
"""Assert that a path is a valid source of a certificates.""" """Assert that a path is a valid source of a certificates."""
assert (str(path).startswith(LE_DIRECTORY) assert (str(path).startswith(LE_DIRECTORY)