Sha256: 3f18aff004186cf8f3095871b4069e6f37ae150a17dc97d98eb98ed1d703d313
Contents?: true
Size: 1.49 KB
Versions: 6
Compression:
Stored size: 1.49 KB
Contents
require 'puppet/ssl' require 'puppet/ssl/certificate' # Keep track of all of our known certificates. class Puppet::SSL::Inventory attr_reader :path # Add a certificate to our inventory. def add(cert) cert = cert.content if cert.is_a?(Puppet::SSL::Certificate) # Create our file, if one does not already exist. rebuild unless FileTest.exist?(@path) Puppet.settings.write(:cert_inventory, "a") do |f| f.print format(cert) end end # Format our certificate for output. def format(cert) iso = '%Y-%m-%dT%H:%M:%S%Z' return "0x%04x %s %s %s\n" % [cert.serial, cert.not_before.strftime(iso), cert.not_after.strftime(iso), cert.subject] end def initialize @path = Puppet[:cert_inventory] end # Rebuild the inventory from scratch. This should happen if # the file is entirely missing or if it's somehow corrupted. def rebuild Puppet.notice "Rebuilding inventory file" Puppet.settings.write(:cert_inventory) do |f| f.print "# Inventory of signed certificates\n# SERIAL NOT_BEFORE NOT_AFTER SUBJECT\n" end Puppet::SSL::Certificate.search("*").each { |cert| add(cert) } end # Find the serial number for a given certificate. def serial(name) return nil unless FileTest.exist?(@path) File.readlines(@path).each do |line| next unless line =~ /^(\S+).+\/CN=#{name}$/ return Integer($1) end end end
Version data entries
6 entries across 6 versions & 1 rubygems