charmhelpers.contrib.ssl package¶
charmhelpers.contrib.ssl.service module¶
-
class
charmhelpers.contrib.ssl.service.ServiceCA(name, ca_dir, cert_type='standard')¶ Bases:
object-
ca_cert¶
-
ca_conf¶
-
ca_key¶
-
create_certificate(common_name)¶
-
default_ca_expiry= '2190'¶
-
default_expiry= '730'¶
-
static
get_ca(type='standard')¶
-
get_ca_bundle()¶
-
get_certificate(common_name)¶
-
get_conf_variables()¶
-
get_or_create_cert(common_name)¶
-
classmethod
get_service_cert(type='standard')¶
-
init()¶
-
signing_conf¶
-
-
charmhelpers.contrib.ssl.generate_selfsigned(keyfile, certfile, keysize='1024', config=None, subject=None, cn=None)¶ Generate selfsigned SSL keypair
You must provide one of the 3 optional arguments: config, subject or cn If more than one is provided the leftmost will be used
Arguments: keyfile – (required) full path to the keyfile to be created certfile – (required) full path to the certfile to be created keysize – (optional) SSL key length config – (optional) openssl configuration file subject – (optional) dictionary with SSL subject variables cn – (optional) cerfificate common name
Required keys in subject dict: cn – Common name (eq. FQDN)
Optional keys in subject dict country – Country Name (2 letter code) state – State or Province Name (full name) locality – Locality Name (eg, city) organization – Organization Name (eg, company) organizational_unit – Organizational Unit Name (eg, section) email – Email Address