lemur_digicert package¶
lemur_digicert
Module¶
plugin
Module¶
- class lemur.plugins.lemur_digicert.plugin.DigiCertCISIssuerPlugin(*args, **kwargs)
Bases:
IssuerPlugin
Wrap the Digicert Certificate Issuing API.
- author: str | None = 'Kevin Glisson'
- author_url: str | None = 'https://github.com/netflix/lemur.git'
- static create_authority(options)
Create an authority.
Creates an authority, this authority is then used by Lemur to allow a user to specify which Certificate Authority they want to sign their certificate.
- Parameters:
options –
- Returns:
- create_certificate(csr, issuer_options)
Create a DigiCert certificate.
- description: str | None = 'Enables the creation of certificates by the DigiCert CIS REST API.'
- revoke_certificate(certificate, reason)
Revoke a Digicert certificate.
- slug: str | None = 'digicert-cis-issuer'
- title: str | None = 'DigiCert CIS'
- version = 'unknown'
- class lemur.plugins.lemur_digicert.plugin.DigiCertCISSourcePlugin(*args, **kwargs)
Bases:
SourcePlugin
Wrap the Digicert CIS Certifcate API.
- additional_options: List[Dict[str, Any]] = []
- author: str | None = 'Kevin Glisson'
- author_url: str | None = 'https://github.com/netflix/lemur.git'
- description: str | None = 'Enables the use of Digicert as a source of existing certificates.'
- get_certificates(options, **kwargs)
Fetch all Digicert certificates.
- slug: str | None = 'digicert-cis-source'
- title: str | None = 'DigiCert CIS'
- version = 'unknown'
- class lemur.plugins.lemur_digicert.plugin.DigiCertIssuerPlugin(*args, **kwargs)
Bases:
IssuerPlugin
Wrap the Digicert Issuer API.
- author: str | None = 'Kevin Glisson'
- author_url: str | None = 'https://github.com/netflix/lemur.git'
- cancel_ordered_certificate(pending_cert, **kwargs)
Set the certificate order to canceled
- static create_authority(options)
Create an authority.
Creates an authority, this authority is then used by Lemur to allow a user to specify which Certificate Authority they want to sign their certificate.
- Parameters:
options –
- Returns:
- create_certificate(csr, issuer_options)
Create a DigiCert certificate.
- Parameters:
csr –
issuer_options –
- Returns:
- raise Exception:
- description: str | None = 'Enables the creation of certificates by the DigiCert REST API.'
- get_ordered_certificate(pending_cert)
Retrieve a certificate via order id
- revoke_certificate(certificate, reason)
Revoke a Digicert certificate.
- slug: str | None = 'digicert-issuer'
- title: str | None = 'DigiCert'
- version = 'unknown'
- class lemur.plugins.lemur_digicert.plugin.DigiCertSourcePlugin(*args, **kwargs)
Bases:
SourcePlugin
Wrap the Digicert Certifcate API.
- additional_options: List[Dict[str, Any]] = []
- author: str | None = 'Kevin Glisson'
- author_url: str | None = 'https://github.com/netflix/lemur.git'
- description: str | None = 'Enables the use of Digicert as a source of existing certificates.'
- get_certificates(options, **kwargs)
Fetch all Digicert certificates.
- slug: str | None = 'digicert-source'
- title: str | None = 'DigiCert'
- version = 'unknown'
- lemur.plugins.lemur_digicert.plugin.determine_end_date(end_date)
Determine appropriate end date
- Parameters:
end_date –
- Returns:
validity_end
- lemur.plugins.lemur_digicert.plugin.determine_validity_years(years)
Considering maximum allowed certificate validity period of 397 days, this method should not return more than 1 year of validity. Thus changing it to always return 1. Lemur will change this method in future to handle validity in months (determine_validity_months) instead of years. This will allow flexibility to handle short-lived certificates.
- Parameters:
years –
- Returns:
1
- lemur.plugins.lemur_digicert.plugin.get_additional_names(options)
Return a list of strings to be added to a SAN certificates.
- Parameters:
options –
- Returns:
- lemur.plugins.lemur_digicert.plugin.get_certificate_id(session, base_url, order_id)
Retrieve certificate order id from Digicert API.
- lemur.plugins.lemur_digicert.plugin.get_cis_certificate(session, base_url, order_id)
Retrieve certificate order id from Digicert API, including the chain
- lemur.plugins.lemur_digicert.plugin.handle_cis_response(session, response)
Handle the DigiCert CIS API response and any errors it might have experienced. :param response: :return:
- lemur.plugins.lemur_digicert.plugin.handle_response(response)
Handle the DigiCert API response and any errors it might have experienced. :param response: :return:
- lemur.plugins.lemur_digicert.plugin.log_status_code(r, *args, **kwargs)
Is a request hook that logs all status codes to the digicert api.
- Parameters:
r –
args –
kwargs –
- Returns:
- lemur.plugins.lemur_digicert.plugin.log_validity_truncation(options, function)
- lemur.plugins.lemur_digicert.plugin.map_cis_fields(options, csr)
MAP issuer options to DigiCert CIS fields/options.
- Parameters:
options –
csr –
- Returns:
data
- lemur.plugins.lemur_digicert.plugin.map_fields(options, csr)
Set the incoming issuer options to DigiCert fields/options.
- Parameters:
options –
csr –
- Returns:
dict or valid DigiCert options
- lemur.plugins.lemur_digicert.plugin.reset_cis_session(session)
The current session might be in a bad state with wrong headers. Let’s attempt to update the session back to the initial state. :param session: :return:
- lemur.plugins.lemur_digicert.plugin.signature_hash(signing_algorithm)
Converts Lemur’s signing algorithm into a format DigiCert understands.
- Parameters:
signing_algorithm –
- Returns:
str digicert specific algorithm string