lemur/lemur/authorities/models.py

"""
.. module: lemur.authorities.models
    :platform: unix
    :synopsis: This module contains all of the models need to create a authority within Lemur.
    :copyright: (c) 2015 by Netflix Inc., see AUTHORS for more
    :license: Apache, see LICENSE for more details.
.. moduleauthor:: Kevin Glisson <kglisson@netflix.com>
"""
from cryptography import x509
from cryptography.hazmat.backends import default_backend

from sqlalchemy.orm import relationship
from sqlalchemy import Column, Integer, String, Text, func, ForeignKey, DateTime, PassiveDefault, Boolean
from sqlalchemy.dialects.postgresql import JSON

from lemur.database import db
from lemur.models import roles_authorities
from lemur.common import defaults


class Authority(db.Model):
    __tablename__ = 'authorities'
    id = Column(Integer, primary_key=True)
    owner = Column(String(128))
    name = Column(String(128), unique=True)
    body = Column(Text())
    chain = Column(Text())
    bits = Column(Integer())
    cn = Column(String(128))
    not_before = Column(DateTime)
    not_after = Column(DateTime)
    active = Column(Boolean, default=True)
    date_created = Column(DateTime, PassiveDefault(func.now()), nullable=False)
    plugin_name = Column(String(64))
    description = Column(Text)
    options = Column(JSON)
    roles = relationship('Role', secondary=roles_authorities, passive_deletes=True, backref=db.backref('authority'), lazy='dynamic')
    user_id = Column(Integer, ForeignKey('users.id'))
    certificates = relationship("Certificate", backref='authority')

    def __init__(self, name, owner, plugin_name, body, roles=None, chain=None, description=None):
        cert = x509.load_pem_x509_certificate(bytes(body), default_backend())
        self.name = name
        self.body = body
        self.chain = chain
        self.owner = owner
        self.description = description
        self.plugin_name = plugin_name
        self.cn = defaults.common_name(cert)
        self.not_before = defaults.not_before(cert)
        self.not_after = defaults.not_after(cert)

        if roles:
            self.roles = roles
initial commit 2015-06-22 22:47:27 +02:00			`"""`
			`.. module: lemur.authorities.models`
			`:platform: unix`
			`:synopsis: This module contains all of the models need to create a authority within Lemur.`
			`:copyright: (c) 2015 by Netflix Inc., see AUTHORS for more`
			`:license: Apache, see LICENSE for more details.`
			`.. moduleauthor:: Kevin Glisson <kglisson@netflix.com>`
			`"""`
			`from cryptography import x509`
			`from cryptography.hazmat.backends import default_backend`

			`from sqlalchemy.orm import relationship`
			`from sqlalchemy import Column, Integer, String, Text, func, ForeignKey, DateTime, PassiveDefault, Boolean`
			`from sqlalchemy.dialects.postgresql import JSON`

			`from lemur.database import db`
Closes 262 (#324) Moves the authority -> role relationship from a 1 -> many to a many -> many. This will allow one role to control and have access to many authorities. 2016-05-19 22:37:05 +02:00			`from lemur.models import roles_authorities`
			`from lemur.common import defaults`
initial commit 2015-06-22 22:47:27 +02:00

			`class Authority(db.Model):`
			`__tablename__ = 'authorities'`
			`id = Column(Integer, primary_key=True)`
			`owner = Column(String(128))`
			`name = Column(String(128), unique=True)`
			`body = Column(Text())`
			`chain = Column(Text())`
			`bits = Column(Integer())`
			`cn = Column(String(128))`
			`not_before = Column(DateTime)`
			`not_after = Column(DateTime)`
			`active = Column(Boolean, default=True)`
			`date_created = Column(DateTime, PassiveDefault(func.now()), nullable=False)`
			`plugin_name = Column(String(64))`
			`description = Column(Text)`
			`options = Column(JSON)`
Closes 262 (#324) Moves the authority -> role relationship from a 1 -> many to a many -> many. This will allow one role to control and have access to many authorities. 2016-05-19 22:37:05 +02:00			`roles = relationship('Role', secondary=roles_authorities, passive_deletes=True, backref=db.backref('authority'), lazy='dynamic')`
initial commit 2015-06-22 22:47:27 +02:00			`user_id = Column(Integer, ForeignKey('users.id'))`
			`certificates = relationship("Certificate", backref='authority')`

			`def __init__(self, name, owner, plugin_name, body, roles=None, chain=None, description=None):`
Closes 262 (#324) Moves the authority -> role relationship from a 1 -> many to a many -> many. This will allow one role to control and have access to many authorities. 2016-05-19 22:37:05 +02:00			`cert = x509.load_pem_x509_certificate(bytes(body), default_backend())`
initial commit 2015-06-22 22:47:27 +02:00			`self.name = name`
			`self.body = body`
			`self.chain = chain`
			`self.owner = owner`
Closes #278 and #199, Starting transition to marshmallow (#299) * Closes #278 and #199, Starting transition to marshmallow 2016-05-05 21:52:08 +02:00			`self.description = description`
initial commit 2015-06-22 22:47:27 +02:00			`self.plugin_name = plugin_name`
Closes 262 (#324) Moves the authority -> role relationship from a 1 -> many to a many -> many. This will allow one role to control and have access to many authorities. 2016-05-19 22:37:05 +02:00			`self.cn = defaults.common_name(cert)`
			`self.not_before = defaults.not_before(cert)`
			`self.not_after = defaults.not_after(cert)`
Closes #278 and #199, Starting transition to marshmallow (#299) * Closes #278 and #199, Starting transition to marshmallow 2016-05-05 21:52:08 +02:00
			`if roles:`
			`self.roles = roles`