X509Request

X509Request is a class for managing X509 requests with their Pkeys. It’s main use is for proxy delegation.

class DIRAC.Core.Security.m2crypto.X509Request.X509Request(reqObj=None, pkeyObj=None)

Bases: object

Class representing X509 Certificate Request. it is used for delegation. Please see About proxies for detailed explanations on delegation, and DIRAC.Core.Security.m2crypto.X509Chain for code examples.

__init__(reqObj=None, pkeyObj=None)

C’tor

Parameters:
  • reqObj – M2Crypto.X509.Request object. Never used. Shall be removed
  • pkeyObj – M2Crypto.EVP.PKey() object. Never used. Shall be removed
checkChain(chain)

Check that the public keys of the chain and the request match.

Parameters:chainX509Chain object
dumpAll()

Dump the Request and the PKey into a string

Returns:S_OK(PEM encoded req + key), S_ERROR
dumpPKey()

Get the pkey as a string

Returns:S_OK(PEM encoded PKey)
dumpRequest()

Get the request as a string

Returns:S_OK(pem encoded request)
generateProxyRequest(bitStrength=1024, limited=False)

Initialize the Request object as well as the PKey.

Parameters:
  • bitStrength – (default 1024) length of the key generated
  • limited – (default False) If True, request is done for a limited proxy
getPKey()

Get PKey Internal

Returns:M2Crypto.EVP.PKEY object
getSubjectDN()

Get subject DN of the request as a string

Returns:S_OK( string )/S_ERROR
loadAllFromString(pemData)

load the Request and key argument from a PEM encoded string.

Parameters:pemData – PEN encoded string containing Request and PKey
Returns:S_OK()