Merge branch 'master' into master
This commit is contained in:
commit
c5cb01bd33
|
@ -124,6 +124,8 @@ def configure_extensions(app):
|
||||||
smtp_mail.init_app(app)
|
smtp_mail.init_app(app)
|
||||||
metrics.init_app(app)
|
metrics.init_app(app)
|
||||||
sentry.init_app(app)
|
sentry.init_app(app)
|
||||||
|
|
||||||
|
if app.config['CORS']:
|
||||||
app.config['CORS_HEADERS'] = 'Content-Type'
|
app.config['CORS_HEADERS'] = 'Content-Type'
|
||||||
cors.init_app(app, resources=r'/api/*', headers='Content-Type', origin='*', supports_credentials=True)
|
cors.init_app(app, resources=r'/api/*', headers='Content-Type', origin='*', supports_credentials=True)
|
||||||
|
|
||||||
|
|
|
@ -208,16 +208,16 @@ class InitializeApp(Command):
|
||||||
if operator_role:
|
if operator_role:
|
||||||
sys.stdout.write("[-] Operator role already created, skipping...!\n")
|
sys.stdout.write("[-] Operator role already created, skipping...!\n")
|
||||||
else:
|
else:
|
||||||
# we create an admin role
|
# we create an operator role
|
||||||
operator_role = role_service.create('operator', description='This is the Lemur operator role.')
|
operator_role = role_service.create('operator', description='This is the Lemur operator role.')
|
||||||
sys.stdout.write("[+] Created 'operator' role\n")
|
sys.stdout.write("[+] Created 'operator' role\n")
|
||||||
|
|
||||||
read_only_role = role_service.get_by_name('read-only')
|
read_only_role = role_service.get_by_name('read-only')
|
||||||
|
|
||||||
if read_only_role:
|
if read_only_role:
|
||||||
sys.stdout.write("[-] Operator role already created, skipping...!\n")
|
sys.stdout.write("[-] Read only role already created, skipping...!\n")
|
||||||
else:
|
else:
|
||||||
# we create an admin role
|
# we create an read only role
|
||||||
read_only_role = role_service.create('read-only', description='This is the Lemur read only role.')
|
read_only_role = role_service.create('read-only', description='This is the Lemur read only role.')
|
||||||
sys.stdout.write("[+] Created 'read-only' role\n")
|
sys.stdout.write("[+] Created 'read-only' role\n")
|
||||||
|
|
||||||
|
@ -251,12 +251,17 @@ class InitializeApp(Command):
|
||||||
recipients = current_app.config.get('LEMUR_SECURITY_TEAM_EMAIL')
|
recipients = current_app.config.get('LEMUR_SECURITY_TEAM_EMAIL')
|
||||||
notification_service.create_default_expiration_notifications("DEFAULT_SECURITY", recipients=recipients)
|
notification_service.create_default_expiration_notifications("DEFAULT_SECURITY", recipients=recipients)
|
||||||
|
|
||||||
|
_DEFAULT_ROTATION_INTERVAL = 'default'
|
||||||
|
default_rotation_interval = policy_service.get_by_name(_DEFAULT_ROTATION_INTERVAL)
|
||||||
|
|
||||||
|
if default_rotation_interval:
|
||||||
|
sys.stdout.write("[-] Default rotation interval policy already created, skipping...!\n")
|
||||||
|
else:
|
||||||
days = current_app.config.get("LEMUR_DEFAULT_ROTATION_INTERVAL", 30)
|
days = current_app.config.get("LEMUR_DEFAULT_ROTATION_INTERVAL", 30)
|
||||||
sys.stdout.write("[+] Creating default certificate rotation policy of {days} days before issuance.\n".format(
|
sys.stdout.write("[+] Creating default certificate rotation policy of {days} days before issuance.\n".format(
|
||||||
days=days
|
days=days))
|
||||||
))
|
policy_service.create(days=days, name=_DEFAULT_ROTATION_INTERVAL)
|
||||||
|
|
||||||
policy_service.create(days=days, name='default')
|
|
||||||
sys.stdout.write("[/] Done!\n")
|
sys.stdout.write("[/] Done!\n")
|
||||||
|
|
||||||
|
|
||||||
|
|
|
@ -18,6 +18,15 @@ def get(policy_id):
|
||||||
return database.get(RotationPolicy, policy_id)
|
return database.get(RotationPolicy, policy_id)
|
||||||
|
|
||||||
|
|
||||||
|
def get_by_name(policy_name):
|
||||||
|
"""
|
||||||
|
Retrieves policy by its name.
|
||||||
|
:param policy_name:
|
||||||
|
:return:
|
||||||
|
"""
|
||||||
|
return database.get_all(RotationPolicy, policy_name, field='name').all()
|
||||||
|
|
||||||
|
|
||||||
def delete(policy_id):
|
def delete(policy_id):
|
||||||
"""
|
"""
|
||||||
Delete a rotation policy.
|
Delete a rotation policy.
|
||||||
|
|
Loading…
Reference in New Issue