Class: GlobalSession::Keystore

Inherits:

Object

• Object
• GlobalSession::Keystore

Defined in:

lib/global_session/keystore.rb

Overview

Keystore uses one or more filesystem directories as a backing store for RSA keys of global session authorities. The directories should contain one or more *.pub files containing OpenSSH-format public RSA keys. The name of the pub file determines the name of the authority it represents.

The Local Authority

Directory will infer the name of the local authority (if any) by looking for a private-key file in the keystore. If a *.key file is found, then its name is taken to be the name of the local authority and all GlobalSessions created will be signed by that authority’s private key.

If more than one private key file is found, Directory will raise an error at initialization time.

Instance Attribute Summary

• #configuration ⇒ Configuration readonly

  Shared configuration object.

• #private_key ⇒ nil, OpenSSL::PKey readonly

  Local authority key if we are an authority, else nil.

• #private_key_name ⇒ nil, String readonly

  Name of local authority if we are one, else nil.

• #public_keys ⇒ Hash readonly

  Map of String authority-names to OpenSSL::PKey public-keys.

Class Method Summary

• .create_keypair(cryptosystem = :RSA, keysize = 1024) ⇒ OpenSSL::PKey::PKey

  Factory method to generate a new keypair for use with GlobalSession.

Instance Method Summary

• #initialize(configuration) ⇒ Keystore constructor

  A new instance of Keystore.

• #inspect ⇒ Object

  A representation of the object suitable for printing to the console.

Constructor Details

#initialize(configuration) ⇒ Keystore

Returns a new instance of Keystore.

# File 'lib/global_session/keystore.rb', line 60

def initialize(configuration)
  @configuration = configuration
  load
end

Instance Attribute Details

#configuration ⇒ Configuration (readonly)

Returns shared configuration object.

Returns:

• (Configuration) —

  shared configuration object

# File 'lib/global_session/keystore.rb', line 44

def configuration
  @configuration
end

#private_key ⇒ nil, OpenSSL::PKey (readonly)

Returns local authority key if we are an authority, else nil.

Returns:

• (nil, OpenSSL::PKey) —

  local authority key if we are an authority, else nil

# File 'lib/global_session/keystore.rb', line 53

def private_key
  @private_key
end

#private_key_name ⇒ nil, String (readonly)

Returns name of local authority if we are one, else nil.

Returns:

• (nil, String) —

  name of local authority if we are one, else nil

# File 'lib/global_session/keystore.rb', line 50

def private_key_name
  @private_key_name
end

#public_keys ⇒ Hash (readonly)

Returns map of String authority-names to OpenSSL::PKey public-keys.

Returns:

• (Hash) —

  map of String authority-names to OpenSSL::PKey public-keys

# File 'lib/global_session/keystore.rb', line 47

def public_keys
  @public_keys
end

Class Method Details

.create_keypair(cryptosystem = :RSA, keysize = 1024) ⇒ OpenSSL::PKey::PKey

Factory method to generate a new keypair for use with GlobalSession.

Returns:

• (OpenSSL::PKey::PKey) —

  a public/private keypair

Raises:

• (ArgumentError) —

  if cryptosystem is unknown to OpenSSL

# File 'lib/global_session/keystore.rb', line 69

def self.create_keypair(cryptosystem=:RSA, keysize=1024)
  factory = OpenSSL::PKey.const_get(cryptosystem)
  factory.generate( 1024 )
rescue NameError => e
  raise ArgumentError, e.message
end

Instance Method Details

#inspect ⇒ Object

Returns a representation of the object suitable for printing to the console.

Returns:

• a representation of the object suitable for printing to the console

# File 'lib/global_session/keystore.rb', line 56

def inspect
  "<#{self.class.name} @configuration=#{@configuration.inspect}>"
end