charmhelpers.contrib.ssl package¶
charmhelpers.contrib.ssl.service module¶
-
class
charmhelpers.contrib.ssl.service.
ServiceCA
(name, ca_dir, cert_type='standard')¶ Bases:
object
-
ca_cert
¶
-
ca_conf
¶
-
ca_key
¶
-
create_certificate
(common_name)¶
-
default_ca_expiry
= '2190'¶
-
default_expiry
= '730'¶
-
static
get_ca
(type='standard')¶
-
get_ca_bundle
()¶
-
get_certificate
(common_name)¶
-
get_conf_variables
()¶
-
get_or_create_cert
(common_name)¶
-
classmethod
get_service_cert
(type='standard')¶
-
init
()¶
-
signing_conf
¶
-
-
charmhelpers.contrib.ssl.
generate_selfsigned
(keyfile, certfile, keysize='1024', config=None, subject=None, cn=None)¶ Generate selfsigned SSL keypair
You must provide one of the 3 optional arguments: config, subject or cn If more than one is provided the leftmost will be used
Arguments: keyfile – (required) full path to the keyfile to be created certfile – (required) full path to the certfile to be created keysize – (optional) SSL key length config – (optional) openssl configuration file subject – (optional) dictionary with SSL subject variables cn – (optional) cerfificate common name
Required keys in subject dict: cn – Common name (eq. FQDN)
Optional keys in subject dict country – Country Name (2 letter code) state – State or Province Name (full name) locality – Locality Name (eg, city) organization – Organization Name (eg, company) organizational_unit – Organizational Unit Name (eg, section) email – Email Address