PKI Deployment Framework

Initial attempt at 'http://pki.fedoraproject.org/wiki/PKI_Instance_Deployment'. Corrected imports to work with site-packages. Standardized log messages via encapsulation in a central file. Updated top-level instance directory. Streamlined parsing and enhanced logging. Added "--dry_run" option. Added umask and default permissions; sanitized use of '+' and '\'. Aliased 'pkiconfig' as 'config' Created a single master PKI dictionary from the sectional dictionaries
author: Matthew Harmsen <mharmsen@redhat.com> 2012-03-12 22:04:20 -0700
committer: Matthew Harmsen <mharmsen@redhat.com> 2012-03-12 22:04:20 -0700
commit: c24c8f080f987ed63034abcedf9320e962c4c415 (patch)
tree: 6a904c1699f870200062478ad2b6b3282653f92c /pki/base/deploy/src/scriptlets/instance.py
parent: ce69d1c0f83e9dc1d66c58c40ab3b2f5f58cc8fa (diff)
download: pki-c24c8f080f987ed63034abcedf9320e962c4c415.tar.gz
pki-c24c8f080f987ed63034abcedf9320e962c4c415.tar.xz
pki-c24c8f080f987ed63034abcedf9320e962c4c415.zip
1 files changed, 105 insertions, 0 deletions
diff --git a/pki/base/deploy/src/scriptlets/instance.py b/pki/base/deploy/src/scriptlets/instance.py
new file mode 100644
index 00000000..a7ca35c6
--- /dev/null
+++ b/pki/base/deploy/src/scriptlets/instance.py
@@ -0,0 +1,105 @@
+#!/usr/bin/python -t
+# Authors:
+#     Matthew Harmsen <mharmsen@redhat.com>
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License as published by
+# the Free Software Foundation; version 2 of the License.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License along
+# with this program; if not, write to the Free Software Foundation, Inc.,
+# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+# Copyright (C) 2011 Red Hat, Inc.
+# All rights reserved.
+#
+
+# System Imports
+import os
+import grp
+import pwd
+
+# PKI Deployment Imports
+import pkiconfig as config
+import pkimessages as log
+import pkiscriptlet
+
+
+# PKI Deployment Instance Population Classes
+class PkiScriptlet(pkiscriptlet.AbstractBasePkiScriptlet):
+    rv = 0
+    pki_path = config.pki_root_prefix +\
+               config.pki_master_dict['pki_instance_root']
+    pki_instance_path = pki_path + "/" +\
+                        config.pki_master_dict['pki_instance_name']
+    pki_subsystem_path = pki_instance_path + "/" +\
+                         config.pki_master_dict['pki_subsystem'].lower()
+
+    def spawn(self):
+        if not os.path.exists(self.pki_subsystem_path):
+            config.pki_log.info(log.INSTANCE_SPAWN_1, __name__)
+            config.pki_log.info(log.INSTANCE_SPAWN_MKDIR_1,
+                                self.pki_subsystem_path)
+            if not config.pki_dry_run_flag:
+                try:
+                    pki_gid = grp.getgrnam(
+                                  config.pki_master_dict['pki_group'])[2]
+                    pki_uid = pwd.getpwnam(
+                                  config.pki_master_dict['pki_user'])[2]
+                    os.mkdir(self.pki_path,
+                             config.PKI_DEPLOYMENT_DEFAULT_DIR_PERMISSIONS)
+                    os.chown(self.pki_path,
+                             pki_uid,
+                             pki_gid)
+                    os.mkdir(self.pki_instance_path,
+                             config.PKI_DEPLOYMENT_DEFAULT_DIR_PERMISSIONS)
+                    os.chown(self.pki_instance_path,
+                             pki_uid,
+                             pki_gid)
+                    os.mkdir(self.pki_subsystem_path,
+                             config.PKI_DEPLOYMENT_DEFAULT_DIR_PERMISSIONS)
+                    os.chown(self.pki_subsystem_path,
+                             pki_uid,
+                             pki_gid)
+                except KeyError:
+                    self.rv = KeyError
+                except OSError:
+                    self.rv = OSError
+        elif not os.path.isdir(self.pki_subsystem_path):
+            config.pki_log.error(
+                log.PKI_DIRECTORY_ALREADY_EXISTS_NOT_A_DIRECTORY_1,
+                self.pki_subsystem_path)
+            self.rv = -1
+        else:
+            config.pki_log.error(log.PKI_DIRECTORY_ALREADY_EXISTS_1,
+                                    self.pki_subsystem_path)
+            self.rv = -1
+        return self.rv
+
+    def respawn(self):
+        if not os.path.exists(self.pki_subsystem_path) or\
+           not os.path.isdir(self.pki_subsystem_path):
+            config.pki_log.error(
+                log.PKI_DIRECTORY_MISSING_OR_NOT_A_DIRECTORY_1,
+                self.pki_subsystem_path)
+            self.rv = -1
+        else:
+            config.pki_log.info(log.INSTANCE_RESPAWN_1, __name__)
+        return self.rv
+
+    def destroy(self):
+        if not os.path.exists(self.pki_subsystem_path) or\
+           not os.path.isdir(self.pki_subsystem_path):
+            config.pki_log.error(
+                log.PKI_DIRECTORY_MISSING_OR_NOT_A_DIRECTORY_1,
+                self.pki_subsystem_path)
+            self.rv = -1
+        else:
+            config.pki_log.info(log.INSTANCE_DESTROY_1, __name__)
+        return self.rv
+
author	Matthew Harmsen <mharmsen@redhat.com>	2012-03-12 22:04:20 -0700
committer	Matthew Harmsen <mharmsen@redhat.com>	2012-03-12 22:04:20 -0700
commit	c24c8f080f987ed63034abcedf9320e962c4c415 (patch)
tree	6a904c1699f870200062478ad2b6b3282653f92c /pki/base/deploy/src/scriptlets/instance.py
parent	ce69d1c0f83e9dc1d66c58c40ab3b2f5f58cc8fa (diff)
download	pki-c24c8f080f987ed63034abcedf9320e962c4c415.tar.gz pki-c24c8f080f987ed63034abcedf9320e962c4c415.tar.xz pki-c24c8f080f987ed63034abcedf9320e962c4c415.zip