lemur_digicert package

lemur_digicert Module

plugin Module

class lemur.plugins.lemur_digicert.plugin.DigiCertCISIssuerPlugin(*args, **kwargs)

Bases: lemur.plugins.bases.issuer.IssuerPlugin

Wrap the Digicert Certificate Issuing API.

author = 'Kevin Glisson'
author_url = 'https://github.com/netflix/lemur.git'
static create_authority(options)

Create an authority.

Creates an authority, this authority is then used by Lemur to allow a user to specify which Certificate Authority they want to sign their certificate.

Parameters

options

Returns

create_certificate(csr, issuer_options)

Create a DigiCert certificate.

description = 'Enables the creation of certificates by the DigiCert CIS REST API.'
revoke_certificate(certificate, reason)

Revoke a Digicert certificate.

slug = 'digicert-cis-issuer'
title = 'DigiCert CIS'
version = 'unknown'
class lemur.plugins.lemur_digicert.plugin.DigiCertCISSourcePlugin(*args, **kwargs)

Bases: lemur.plugins.bases.source.SourcePlugin

Wrap the Digicert CIS Certifcate API.

additional_options = []
author = 'Kevin Glisson'
author_url = 'https://github.com/netflix/lemur.git'
description = 'Enables the use of Digicert as a source of existing certificates.'
get_certificates(options, **kwargs)

Fetch all Digicert certificates.

slug = 'digicert-cis-source'
title = 'DigiCert'
version = 'unknown'
class lemur.plugins.lemur_digicert.plugin.DigiCertIssuerPlugin(*args, **kwargs)

Bases: lemur.plugins.bases.issuer.IssuerPlugin

Wrap the Digicert Issuer API.

author = 'Kevin Glisson'
author_url = 'https://github.com/netflix/lemur.git'
cancel_ordered_certificate(pending_cert, **kwargs)

Set the certificate order to canceled

static create_authority(options)

Create an authority.

Creates an authority, this authority is then used by Lemur to allow a user to specify which Certificate Authority they want to sign their certificate.

Parameters

options

Returns

create_certificate(csr, issuer_options)

Create a DigiCert certificate.

Parameters
  • csr

  • issuer_options

Returns

raise Exception

description = 'Enables the creation of certificates by the DigiCert REST API.'
get_ordered_certificate(pending_cert)

Retrieve a certificate via order id

revoke_certificate(certificate, reason)

Revoke a Digicert certificate.

slug = 'digicert-issuer'
title = 'DigiCert'
version = 'unknown'
class lemur.plugins.lemur_digicert.plugin.DigiCertSourcePlugin(*args, **kwargs)

Bases: lemur.plugins.bases.source.SourcePlugin

Wrap the Digicert Certifcate API.

author = 'Kevin Glisson'
author_url = 'https://github.com/netflix/lemur.git'
description = 'Enables the use of Digicert as a source of existing certificates.'
get_certificates()
slug = 'digicert-source'
title = 'DigiCert'
version = 'unknown'
lemur.plugins.lemur_digicert.plugin.determine_end_date(end_date)

Determine appropriate end date

Parameters

end_date

Returns

validity_end

lemur.plugins.lemur_digicert.plugin.determine_validity_years(years)

Considering maximum allowed certificate validity period of 397 days, this method should not return more than 1 year of validity. Thus changing it to always return 1. Lemur will change this method in future to handle validity in months (determine_validity_months) instead of years. This will allow flexibility to handle short-lived certificates.

Parameters

years

Returns

1

lemur.plugins.lemur_digicert.plugin.get_additional_names(options)

Return a list of strings to be added to a SAN certificates.

Parameters

options

Returns

lemur.plugins.lemur_digicert.plugin.get_certificate_id(session, base_url, order_id)

Retrieve certificate order id from Digicert API.

lemur.plugins.lemur_digicert.plugin.get_cis_certificate(session, base_url, order_id)

Retrieve certificate order id from Digicert API, including the chain

lemur.plugins.lemur_digicert.plugin.handle_cis_response(response)

Handle the DigiCert CIS API response and any errors it might have experienced. :param response: :return:

lemur.plugins.lemur_digicert.plugin.handle_response(response)

Handle the DigiCert API response and any errors it might have experienced. :param response: :return:

lemur.plugins.lemur_digicert.plugin.log_status_code(r, *args, **kwargs)

Is a request hook that logs all status codes to the digicert api.

Parameters
  • r

  • args

  • kwargs

Returns

lemur.plugins.lemur_digicert.plugin.log_validity_truncation(options, function)
lemur.plugins.lemur_digicert.plugin.map_cis_fields(options, csr)

MAP issuer options to DigiCert CIS fields/options.

Parameters
  • options

  • csr

Returns

data

lemur.plugins.lemur_digicert.plugin.map_fields(options, csr)

Set the incoming issuer options to DigiCert fields/options.

Parameters
  • options

  • csr

Returns

dict or valid DigiCert options

lemur.plugins.lemur_digicert.plugin.signature_hash(signing_algorithm)

Converts Lemur’s signing algorithm into a format DigiCert understands.

Parameters

signing_algorithm

Returns

str digicert specific algorithm string