rasenmaeher_api.cfssl.private
Private apis
Module Contents
Functions
|
Do a POST with the mTLS client |
Call ocsprest CRL dump |
|
Call ocsprest refresh |
|
|
Quick and dirty method to sign CSR from CFSSL |
|
Call ocspsign endpoint |
|
Resolve the given reason into the actual flag |
|
Read the serial number from the PEM cert and call revoke_serial |
|
Call the CFSSL revoke endpoint |
|
Read the serial number from the PEM cert and call certadd |
Attributes
- async sign_csr(csr, bundle=True)[source]
Quick and dirty method to sign CSR from CFSSL params: csr, whether to return cert of full bundle returns: certificate as PEM
- validate_reason(reason)[source]
Resolve the given reason into the actual flag
- Parameters:
reason (ReasonTypes)
- Return type:
cryptography.x509.ReasonFlags
- async revoke_pem(pem, reason)[source]
Read the serial number from the PEM cert and call revoke_serial Reason must be one of the enumerations of cryptography.x509.ReasonFlags
If path is given it’s read_text()d
- Parameters:
pem (Union[str, pathlib.Path])
reason (ReasonTypes)
- Return type:
None
- async revoke_serial(serialno, authority_key_id, reason)[source]
Call the CFSSL revoke endpoint
authority_key_id must be formatted in the way CFSSL expects it Reason must be one of the enumerations of cryptography.x509.ReasonFlags or it’s string values (see REASONS_BY_VALUE)
- async certadd_pem(pem, status='good')[source]
Read the serial number from the PEM cert and call certadd endpoint
If path is given it’s read_text()d
- Parameters:
pem (Union[str, pathlib.Path])
status (str)
- Return type:
Any