Sha256: fc0e54303a9c1964df5649d91cd401a518d9046cf519be06c992f12353f9633f
Contents?: true
Size: 1.32 KB
Versions: 48
Compression:
Stored size: 1.32 KB
Contents
require 'puppet/indirector/ssl_file'
require 'puppet/ssl/key'
class Puppet::SSL::Key::File < Puppet::Indirector::SslFile
desc "Manage SSL private and public keys on disk."
store_in :privatekeydir
store_ca_at :cakey
def allow_remote_requests?
false
end
# Where should we store the public key?
def public_key_path(name)
if ca?(name)
Puppet[:capub]
else
File.join(Puppet[:publickeydir], name.to_s + ".pem")
end
end
# Remove the public key, in addition to the private key
def destroy(request)
super
key_path = Puppet::FileSystem.pathname(public_key_path(request.key))
return unless Puppet::FileSystem.exist?(key_path)
begin
Puppet::FileSystem.unlink(key_path)
rescue => detail
raise Puppet::Error, "Could not remove #{request.key} public key: #{detail}", detail.backtrace
end
end
# Save the public key, in addition to the private key.
def save(request)
super
begin
# RFC 1421 states PEM is 7-bit ASCII https://tools.ietf.org/html/rfc1421
Puppet.settings.setting(:publickeydir).open_file(public_key_path(request.key), 'w:ASCII') do |f|
f.print request.instance.content.public_key.to_pem
end
rescue => detail
raise Puppet::Error, "Could not write #{request.key}: #{detail}", detail.backtrace
end
end
end
Version data entries
48 entries across 48 versions & 2 rubygems