#include "cli/pkiutility.hpp"
#include "cli/nodeutility.hpp"
#include "cli/featureutility.hpp"
+#include "remote/apilistener.hpp"
#include "base/logger.hpp"
#include "base/console.hpp"
#include "base/application.hpp"
if (PkiUtility::NewCa() > 0)
Log(LogWarning, "cli", "Found CA, skipping and using the existing one.");
- String pki_path = PkiUtility::GetPkiPath();
+ String pki_path = ApiListener::GetPkiDir();
Utility::MkDirP(pki_path, 0700);
String user = ScriptGlobal::Get("RunAsUser");
}
/* Copy CA certificate to /etc/icinga2/pki */
- String ca_path = PkiUtility::GetLocalCaPath();
+ String ca_path = ApiListener::GetCaDir();
String ca = ca_path + "/ca.crt";
String ca_key = ca_path + "/ca.key";
String target_ca = pki_path + "/ca.crt";
******************************************************************************/
#include "cli/calistcommand.hpp"
+#include "remote/apilistener.hpp"
#include "base/logger.hpp"
#include "base/application.hpp"
#include "base/tlsutility.hpp"
{
Dictionary::Ptr requests = new Dictionary();
- String requestDir = Application::GetLocalStateDir() + "/lib/icinga2/pki-requests";
+ String requestDir = ApiListener::GetPkiRequestsDir();
if (Utility::PathExists(requestDir))
Utility::Glob(requestDir + "/*.json", boost::bind(&CollectRequestHandler, requests, _1), GlobFile);
******************************************************************************/
#include "cli/casigncommand.hpp"
+#include "remote/apilistener.hpp"
#include "base/logger.hpp"
#include "base/application.hpp"
#include "base/tlsutility.hpp"
*/
int CASignCommand::Run(const boost::program_options::variables_map& vm, const std::vector<std::string>& ap) const
{
- String requestFile = Application::GetLocalStateDir() + "/lib/icinga2/pki-requests/" + ap[0] + ".json";
+ String requestFile = ApiListener::GetPkiRequestsDir() + "/" + ap[0] + ".json";
if (!Utility::PathExists(requestFile)) {
Log(LogCritical, "cli")
#include "cli/featureutility.hpp"
#include "cli/pkiutility.hpp"
#include "cli/apisetuputility.hpp"
+#include "remote/apilistener.hpp"
#include "base/logger.hpp"
#include "base/console.hpp"
#include "base/application.hpp"
cn = vm["cn"].as<std::string>();
/* check whether the user wants to generate a new certificate or not */
- String existing_path = PkiUtility::GetPkiPath() + "/" + cn + ".crt";
+ String existing_path = ApiListener::GetPkiDir() + "/" + cn + ".crt";
Log(LogInformation, "cli")
<< "Checking for existing certificates for common name '" << cn << "'...";
/* pki request a signed certificate from the master */
- String pki_path = PkiUtility::GetPkiPath();
+ String pki_path = ApiListener::GetPkiDir();
Utility::MkDirP(pki_path, 0700);
String user = ScriptGlobal::Get("RunAsUser");
NodeUtility::UpdateConstant("NodeName", cn);
NodeUtility::UpdateConstant("ZoneName", vm["zone"].as<std::string>());
- String ticketPath = Application::GetLocalStateDir() + "/lib/icinga2/pki/ticket";
+ String ticketPath = ApiListener::GetPkiDir() + "/ticket";
String tempTicketPath = Utility::CreateTempFile(ticketPath + ".XXXXXX", 0600, fp);
#include "cli/pkiutility.hpp"
#include "cli/featureutility.hpp"
#include "cli/apisetuputility.hpp"
+#include "remote/apilistener.hpp"
#include "base/logger.hpp"
#include "base/console.hpp"
#include "base/application.hpp"
}
/* workaround for fetching the master cert */
- String pki_path = PkiUtility::GetPkiPath();
+ String pki_path = ApiListener::GetPkiDir();
Utility::MkDirP(pki_path, 0700);
String user = ScriptGlobal::Get("RunAsUser");
cn = cn.Trim();
/* check whether the user wants to generate a new certificate or not */
- String existing_path = PkiUtility::GetPkiPath() + "/" + cn + ".crt";
+ String existing_path = ApiListener::GetPkiDir() + "/" + cn + ".crt";
std::cout << ConsoleColorTag(Console_Normal)
<< "Checking for existing certificates for common name '" << cn << "'...\n";
#include "cli/pkiutility.hpp"
#include "cli/clicommand.hpp"
+#include "remote/apilistener.hpp"
#include "base/logger.hpp"
#include "base/application.hpp"
#include "base/tlsutility.hpp"
using namespace icinga;
-String PkiUtility::GetPkiPath(void)
-{
- return Application::GetLocalStateDir() + "/lib/icinga2/pki";
-}
-
-String PkiUtility::GetLocalCaPath(void)
-{
- return Application::GetLocalStateDir() + "/lib/icinga2/ca";
-}
-
int PkiUtility::NewCa(void)
{
- String caDir = GetLocalCaPath();
+ String caDir = ApiListener::GetCaDir();
String caCertFile = caDir + "/ca.crt";
String caKeyFile = caDir + "/ca.key";
class I2_CLI_API PkiUtility
{
public:
- static String GetPkiPath(void);
- static String GetLocalCaPath(void);
-
static int NewCa(void);
static int NewCert(const String& cn, const String& keyfile, const String& csrfile, const String& certfile);
static int SignCsr(const String& csrfile, const String& certfile);
m_SyncQueue.SetName("ApiListener, SyncQueue");
}
+String ApiListener::GetApiDir(void)
+{
+ return Application::GetLocalStateDir() + "/lib/icinga2/api/";
+}
+
+String ApiListener::GetPkiDir(void)
+{
+ return Application::GetLocalStateDir() + "/lib/icinga2/pki/";
+}
+
+String ApiListener::GetCaDir(void)
+{
+ return Application::GetLocalStateDir() + "/lib/icinga2/ca/";
+}
+
+String ApiListener::GetPkiRequestsDir(void)
+{
+ return Application::GetLocalStateDir() + "/lib/icinga2/pki-requests/";
+}
+
void ApiListener::OnConfigLoaded(void)
{
if (m_Instance)
JsonRpcConnection::SendCertificateRequest(aclient, MessageOrigin::Ptr(), String());
- if (Utility::PathExists(Application::GetLocalStateDir() + "/lib/icinga2/pki-requests"))
- Utility::Glob(Application::GetLocalStateDir() + "/lib/icinga2/pki-requests/*.json", boost::bind(&JsonRpcConnection::SendCertificateRequest, aclient, MessageOrigin::Ptr(), _1), GlobFile);
+ if (Utility::PathExists(ApiListener::GetPkiRequestsDir()))
+ Utility::Glob(ApiListener::GetPkiRequestsDir() + "/*.json", boost::bind(&JsonRpcConnection::SendCertificateRequest, aclient, MessageOrigin::Ptr(), _1), GlobFile);
}
/* Make sure that the config updates are synced
PersistMessage(message, secobj);
}
-String ApiListener::GetApiDir(void)
-{
- return Application::GetLocalStateDir() + "/lib/icinga2/api/";
-}
-
/* must hold m_LogLock */
void ApiListener::OpenLogFile(void)
{
ApiListener(void);
- static ApiListener::Ptr GetInstance(void);
+ static String GetApiDir(void);
+ static String GetPkiDir(void);
+ static String GetCaDir(void);
+ static String GetPkiRequestsDir(void);
void UpdateSSLContext(void);
+ static ApiListener::Ptr GetInstance(void);
+
Endpoint::Ptr GetMaster(void) const;
bool IsMaster(void) const;
Endpoint::Ptr GetLocalEndpoint(void) const;
- static String GetApiDir(void);
-
void SyncSendMessage(const Endpoint::Ptr& endpoint, const Dictionary::Ptr& message);
void RelayMessage(const MessageOrigin::Ptr& origin, const ConfigObject::Ptr& secobj, const Dictionary::Ptr& message, bool log);
result->Set("fingerprint_request", certFingerprint);
- String requestDir = Application::GetLocalStateDir() + "/lib/icinga2/pki-requests";
+ String requestDir = ApiListener::GetPkiRequestsDir();
String requestPath = requestDir + "/" + certFingerprint + ".json";
result->Set("ca", CertificateToString(cacert));
return Empty;
}
- String requestDir = Application::GetLocalStateDir() + "/lib/icinga2/pki-requests";
+ String requestDir = ApiListener::GetPkiRequestsDir();
String requestPath = requestDir + "/" + certFingerprint + ".json";
std::cout << requestPath << "\n";
projects / icinga2 / commitdiff