Module: Cert::Certs

Defined in:

app/services/cert/certs.rb

Class Method Summary

• .ca_cert ⇒ Object
• .candlepin_client_ca_cert ⇒ Object
• .ssl_client_cert ⇒ Object
• .ssl_client_cert_filename ⇒ Object
• .ssl_client_key ⇒ Object
• .ssl_client_key_filename ⇒ Object
• .ueber_cert(organization) ⇒ Object
• .verify_ueber_cert(organization) ⇒ Object

Class Method Details

.ca_cert ⇒ Object

# File 'app/services/cert/certs.rb', line 7

def self.ca_cert
  File.read(Setting[:ssl_ca_file])
end

.candlepin_client_ca_cert ⇒ Object

# File 'app/services/cert/certs.rb', line 11

def self.candlepin_client_ca_cert
  File.read(SETTINGS[:katello][:candlepin][:ca_cert_file])
end

.ssl_client_cert ⇒ Object

# File 'app/services/cert/certs.rb', line 15

def self.ssl_client_cert
  @ssl_client_cert ||= OpenSSL::X509::Certificate.new(File.read(ssl_client_cert_filename))
end

.ssl_client_cert_filename ⇒ Object

# File 'app/services/cert/certs.rb', line 19

def self.ssl_client_cert_filename
  Setting[:ssl_certificate]
end

.ssl_client_key ⇒ Object

# File 'app/services/cert/certs.rb', line 23

def self.ssl_client_key
  @ssl_client_key ||= OpenSSL::PKey::RSA.new(File.read(ssl_client_key_filename))
end

.ssl_client_key_filename ⇒ Object

# File 'app/services/cert/certs.rb', line 27

def self.ssl_client_key_filename
  Setting[:ssl_priv_key]
end

.ueber_cert(organization) ⇒ Object

# File 'app/services/cert/certs.rb', line 3

def self.ueber_cert(organization)
  organization.debug_cert
end

.verify_ueber_cert(organization) ⇒ Object

# File 'app/services/cert/certs.rb', line 31

def self.verify_ueber_cert(organization)
  ueber_cert = OpenSSL::X509::Certificate.new(self.ueber_cert(organization)[:cert])
  cert_store = OpenSSL::X509::Store.new
  cert_store.add_file SETTINGS[:katello][:candlepin][:ca_cert_file]
  organization.regenerate_ueber_cert unless cert_store.verify ueber_cert
end