diff options
author | Graham Hagger <g.hagger@gmail.com> | 2010-10-22 15:15:03 -0400 |
---|---|---|
committer | Graham Hagger <g.hagger@gmail.com> | 2010-10-22 15:15:03 -0400 |
commit | df1d94eda634e2f00757af19b70e1abb6b1b98a2 (patch) | |
tree | 14bb8087105a0cb9fb195626efd31b7ca5ed2437 /src | |
parent | 416162c37c0b30cf42db1b7bd86bf5e15ff61284 (diff) | |
download | bcfg2-df1d94eda634e2f00757af19b70e1abb6b1b98a2.tar.gz bcfg2-df1d94eda634e2f00757af19b70e1abb6b1b98a2.tar.bz2 bcfg2-df1d94eda634e2f00757af19b70e1abb6b1b98a2.zip |
moved some sslca docs around
Diffstat (limited to 'src')
-rw-r--r-- | src/lib/Server/Plugins/SSLCA.py | 43 |
1 files changed, 0 insertions, 43 deletions
diff --git a/src/lib/Server/Plugins/SSLCA.py b/src/lib/Server/Plugins/SSLCA.py index 294f82f3f..29acabbf4 100644 --- a/src/lib/Server/Plugins/SSLCA.py +++ b/src/lib/Server/Plugins/SSLCA.py @@ -4,49 +4,6 @@ import os from ConfigParser import ConfigParser, NoSectionError, NoOptionError from M2Crypto import RSA, EVP, X509, m2 -""" -How this should work.... - -V1.0 - Only handles localhost.key and localhost.crt, therefor -assuming we only care about a cert for www, or all ssl services -will use the same cert - -Initialiazation: -Grab options from bcfg2.conf -load cakey, cacert -cache other options - -Req comes in for key & cert -If key exists: - load key - cache key - return key -Else: - gen key - cache key - save key - return key -If cert exists: - load cert - If fails to verify against key: - gen cert - save cert - return cert - If aliases fail don't match - gen cert - save cert - return cert - return cert -Else: - gen cert - save cert - return cert - -V2.0 - Maybe create additional types, SSLCertPath, SSLKeyPath, -to allow generation of multiple certs/keys in arbitrary locations -""" - - class SSLbase(Bcfg2.Server.Plugin.Plugin, Bcfg2.Server.Plugin.Generator, Bcfg2.Server.Plugin.DirectoryBacked): |