X509Request¶
X509Request is a class for managing X509 requests with their Pkeys. It’s main use is for proxy delegation.
- class DIRAC.Core.Security.m2crypto.X509Request.X509Request(reqObj=None, pkeyObj=None)¶
Bases:
objectClass representing X509 Certificate Request. it is used for delegation. Please see About proxies for detailed explanations on delegation, and
DIRAC.Core.Security.m2crypto.X509Chainfor code examples.- __init__(reqObj=None, pkeyObj=None)¶
C’tor
- Parameters
reqObj – M2Crypto.X509.Request object. Never used. Shall be removed
pkeyObj – M2Crypto.EVP.PKey() object. Never used. Shall be removed
- checkChain(chain)¶
Check that the public keys of the chain and the request match.
- Parameters
chain –
X509Chainobject
- dumpAll()¶
Dump the Request and the PKey into a string
- Returns
S_OK(PEM encoded req + key), S_ERROR
- dumpPKey()¶
Get the private as a string
- Returns
S_OK(PEM encoded PKey)
- dumpRequest()¶
Get the request as a string
- Returns
S_OK(pem encoded request)
- generateProxyRequest(bitStrength=1024, limited=False)¶
Initialize the Request object as well as the PKey.
- Parameters
bitStrength – (default 1024) length of the key generated
limited – (default False) If True, request is done for a limited proxy
- getPKey()¶
Get PKey Internal
- Returns
M2Crypto.EVP.PKEY object
- getSubjectDN()¶
Get subject DN of the request as a string
- Returns
S_OK( string )/S_ERROR
- loadAllFromString(pemData)¶
load the Request and key argument from a PEM encoded string.
- Parameters
pemData – PEN encoded string containing Request and PKey
- Returns
S_OK()