pvl-verkko: comparison pvl/login/ssl.py

equal deleted inserted replaced

-:d2426cebb46a
+:df3bf49634a1
 def sign_user (self, user, spkac, userinfo=None) :
 """
 Sign given spkac string (base64-encoded) for given user.
-Returns path to the signed cert.
+Returns a name for the signed cert.
 """
 if not set(user).issubset(self.VALID_USER) :
 raise Error("Invalid username: {user}".format(user=user))
 self.write_spkac(os.path.join(dir, name) + '.spkac', spkac, self.generate_dn(user, userinfo))
 # sign it
 if os.path.exists(cert_file) :
 log.warning("cert already exists: %s", cert_file)
-return cert_file
+return name
 if os.path.exists(tmp_file) :
 log.warning("cleaning out previous tmp file: %s", tmp_file)
 os.unlink(tmp_file)
 self.sign_spkac(tmp_file, spkac_file)
 log.debug("%s: rename %s -> %s", user, tmp_file, cert_file)
 os.rename(tmp_file, cert_file)
-return cert_file
+return name
+def open_cert (self, user, name) :
+"""
+Return an opened cert file by username / cert name.
+"""
+if not set(user).issubset(self.VALID_USER) :
+raise Error("Invalid username: {user}".format(user=user))
+path = os.path.join(self.users, user, name)
+if not os.path.exists(path) :
+raise Error("No cert found on server")
+return open(path)

changeset 375	df3bf49634a1
parent 373	6beb06b59ee6