lemur/lemur/certificates/sync.py

"""
.. module: sync
    :platform: Unix
    :synopsis: This module contains various certificate syncing operations.
    Because of the nature of the SSL environment there are multiple ways
    a certificate could be created without Lemur's knowledge. Lemur attempts
    to 'sync' with as many different datasources as possible to try and track
    any certificate that may be in use.

    These operations are typically run on a periodic basis from either the command
    line or a cron job.

    :copyright: (c) 2015 by Netflix Inc., see AUTHORS for more
    :license: Apache, see LICENSE for more details.
.. moduleauthor:: Kevin Glisson <kglisson@netflix.com>
"""
from flask import current_app

from lemur.certificates import service as cert_service

from lemur.plugins.base import plugins
from lemur.plugins.bases.source import SourcePlugin


def sync():
    for plugin in plugins:
        new = 0
        updated = 0
        if isinstance(plugin, SourcePlugin):
            if plugin.is_enabled():
                current_app.logger.error("Retrieving certificates from {0}".format(plugin.title))
                certificates = plugin.get_certificates()

                for certificate in certificates:
                    exists = cert_service.find_duplicates(certificate)

                    if not exists:
                        cert_service.import_certificate(**certificate)
                        new += 1

                    if len(exists) == 1:
                        updated += 1

                # TODO associated cert with source
                # TODO update cert if found from different source
                # TODO disassociate source if missing
initial commit 2015-06-22 22:47:27 +02:00			`"""`
			`.. module: sync`
			`:platform: Unix`
			`:synopsis: This module contains various certificate syncing operations.`
			`Because of the nature of the SSL environment there are multiple ways`
			`a certificate could be created without Lemur's knowledge. Lemur attempts`
			`to 'sync' with as many different datasources as possible to try and track`
			`any certificate that may be in use.`

			`These operations are typically run on a periodic basis from either the command`
			`line or a cron job.`

			`:copyright: (c) 2015 by Netflix Inc., see AUTHORS for more`
			`:license: Apache, see LICENSE for more details.`
			`.. moduleauthor:: Kevin Glisson <kglisson@netflix.com>`
			`"""`
			`from flask import current_app`

			`from lemur.certificates import service as cert_service`

Starting to move to new plugin architecture. 2015-07-04 21:47:57 +02:00			`from lemur.plugins.base import plugins`
Refactored 'accounts' to be more general with 'destinations' 2015-07-11 02:06:57 +02:00			`from lemur.plugins.bases.source import SourcePlugin`
initial commit 2015-06-22 22:47:27 +02:00
Pleasing the PEP8 gods 2015-07-21 22:06:13 +02:00
Refactored 'accounts' to be more general with 'destinations' 2015-07-11 02:06:57 +02:00			`def sync():`
			`for plugin in plugins:`
			`new = 0`
			`updated = 0`
			`if isinstance(plugin, SourcePlugin):`
			`if plugin.is_enabled():`
			`current_app.logger.error("Retrieving certificates from {0}".format(plugin.title))`
			`certificates = plugin.get_certificates()`
initial commit 2015-06-22 22:47:27 +02:00
Refactored 'accounts' to be more general with 'destinations' 2015-07-11 02:06:57 +02:00			`for certificate in certificates:`
			`exists = cert_service.find_duplicates(certificate)`
initial commit 2015-06-22 22:47:27 +02:00
Refactored 'accounts' to be more general with 'destinations' 2015-07-11 02:06:57 +02:00			`if not exists:`
			`cert_service.import_certificate(**certificate)`
			`new += 1`
initial commit 2015-06-22 22:47:27 +02:00
Refactored 'accounts' to be more general with 'destinations' 2015-07-11 02:06:57 +02:00			`if len(exists) == 1:`
			`updated += 1`
initial commit 2015-06-22 22:47:27 +02:00
Refactored 'accounts' to be more general with 'destinations' 2015-07-11 02:06:57 +02:00			`# TODO associated cert with source`
			`# TODO update cert if found from different source`
Pleasing the PEP8 gods 2015-07-21 22:06:13 +02:00			`# TODO disassociate source if missing`