X509Request
X509Request is a class for managing X509 requests with their Pkeys. It’s main use is for proxy delegation.
- class DIRAC.Core.Security.m2crypto.X509Request.X509Request(reqObj=None, pkeyObj=None)
Bases:
objectClass representing X509 Certificate Request. it is used for delegation. Please see About proxies for detailed explanations on delegation, and
DIRAC.Core.Security.m2crypto.X509Chainfor code examples.- __init__(reqObj=None, pkeyObj=None)
C’tor
- Parameters:
reqObj – M2Crypto.X509.Request object. Never used. Shall be removed
pkeyObj – M2Crypto.EVP.PKey() object. Never used. Shall be removed
- checkChain(chain)
Check that the public keys of the chain and the request match.
- Parameters:
chain –
X509Chainobject
- dumpAll()
Dump the Request and the PKey into a string
- Returns:
S_OK(PEM encoded req + key), S_ERROR
- dumpPKey()
Get the private as a string
- Returns:
S_OK(PEM encoded PKey)
- dumpRequest()
Get the request as a string
- Returns:
S_OK(pem encoded request)
- generateProxyRequest(bitStrength=2048, limited=False)
Initialize the Request object as well as the PKey.
- Parameters:
bitStrength – (default 2048) length of the key generated
limited – (default False) If True, request is done for a limited proxy
- getPKey()
Get PKey Internal
- Returns:
M2Crypto.EVP.PKEY object
- getStrength()
Get the length of the key of the request in bit
- Returns:
S_OK( size )/S_ERROR
- getSubjectDN()
Get subject DN of the request as a string
- Returns:
S_OK( string )/S_ERROR
- loadAllFromString(pemData)
load the Request and key argument from a PEM encoded string.
- Parameters:
pemData – PEN encoded string containing Request and PKey
- Returns:
S_OK()