harbor/make/photon/prepare/commands/gencerts.py

import os
import sys
import click
import pathlib
from subprocess import check_call, PIPE, STDOUT

from utils.cert import openssl_installed
from utils.misc import get_realpath

gen_tls_script = pathlib.Path(__file__).parent.parent.joinpath('scripts/gencert.sh').absolute()

@click.command()
@click.option('-p', '--path', required=True, type=str,help='the path to store generated cert files')
@click.option('-d', '--days', default='365', type=int, help='the expired time for cert')
def gencert(path, days):
    """
    gencert command will generate cert files for internal TLS
    """
    path = get_realpath(path)
    click.echo('Check openssl ...')
    if not openssl_installed():
        raise(Exception('openssl not installed'))

    click.echo("start generate internal tls certs")
    if not os.path.exists(path):
        click.echo('path {} not exist, create it...'.format(path))
        os.makedirs(path, exist_ok=True)

    shell_stat = check_call([gen_tls_script, days], stdout=PIPE, stderr=STDOUT, cwd=path)
    if shell_stat != 0:
        click.echo('Can not generate internal tls certs')
        sys.exit(-1)
Feat: auto install ca in registry Signed-off-by: DQ <dengq@vmware.com> 2020-02-14 14:11:52 +01:00			`import os`
Add tls for trivy Add trivy tls cert files Add tivey tls env and config enhance gencert Signed-off-by: DQ <dengq@vmware.com> 2020-03-17 10:30:25 +01:00			`import sys`
Feat: auto install ca in registry Signed-off-by: DQ <dengq@vmware.com> 2020-02-14 14:11:52 +01:00			`import click`
			`import pathlib`
			`from subprocess import check_call, PIPE, STDOUT`

			`from utils.cert import openssl_installed`
			`from utils.misc import get_realpath`

			`gen_tls_script = pathlib.Path(__file__).parent.parent.joinpath('scripts/gencert.sh').absolute()`

			`@click.command()`
Enhance help message Provide more info in help message Add requried opition and they will show missing option if you are not provide them instead of Exception Signed-off-by: DQ <dengq@vmware.com> 2020-04-01 10:51:13 +02:00			`@click.option('-p', '--path', required=True, type=str,help='the path to store generated cert files')`
			`@click.option('-d', '--days', default='365', type=int, help='the expired time for cert')`
Add tls for trivy Add trivy tls cert files Add tivey tls env and config enhance gencert Signed-off-by: DQ <dengq@vmware.com> 2020-03-17 10:30:25 +01:00			`def gencert(path, days):`
Enhance help message Provide more info in help message Add requried opition and they will show missing option if you are not provide them instead of Exception Signed-off-by: DQ <dengq@vmware.com> 2020-04-01 10:51:13 +02:00			`"""`
			`gencert command will generate cert files for internal TLS`
			`"""`
Feat: auto install ca in registry Signed-off-by: DQ <dengq@vmware.com> 2020-02-14 14:11:52 +01:00			`path = get_realpath(path)`
			`click.echo('Check openssl ...')`
			`if not openssl_installed():`
			`raise(Exception('openssl not installed'))`

			`click.echo("start generate internal tls certs")`
			`if not os.path.exists(path):`
			`click.echo('path {} not exist, create it...'.format(path))`
			`os.makedirs(path, exist_ok=True)`

Add tls for trivy Add trivy tls cert files Add tivey tls env and config enhance gencert Signed-off-by: DQ <dengq@vmware.com> 2020-03-17 10:30:25 +01:00			`shell_stat = check_call([gen_tls_script, days], stdout=PIPE, stderr=STDOUT, cwd=path)`
Feat: auto install ca in registry Signed-off-by: DQ <dengq@vmware.com> 2020-02-14 14:11:52 +01:00			`if shell_stat != 0:`
			`click.echo('Can not generate internal tls certs')`
Add tls for trivy Add trivy tls cert files Add tivey tls env and config enhance gencert Signed-off-by: DQ <dengq@vmware.com> 2020-03-17 10:30:25 +01:00			`sys.exit(-1)`