This repository has been archived on 2020-03-24. You can view files and clone it, but cannot push or open issues or pull requests.
quay/util/generatepresharedkey.py

48 lines
1.8 KiB
Python
Raw Normal View History

2016-04-14 20:14:23 +00:00
from app import app
from data import model
from data.database import ServiceKeyApprovalType
from data.model.log import log_action
from timeparse import ParseDatetime
import argparse
2016-04-29 14:14:50 +00:00
def generate_key(service, name, expiration_date=None, notes=None):
2016-04-14 20:14:23 +00:00
metadata = {
'created_by': 'CLI tool',
}
# Generate a key with a private key that we *never save*.
(private_key, key) = model.service_keys.generate_service_key(service, expiration_date,
metadata=metadata,
name=name)
# Auto-approve the service key.
2016-04-29 14:14:50 +00:00
model.service_keys.approve_service_key(key.kid, None, ServiceKeyApprovalType.AUTOMATIC,
2016-04-14 20:14:23 +00:00
notes=notes or '')
# Log the creation and auto-approval of the service key.
key_log_metadata = {
'kid': key.kid,
'preshared': True,
'service': service,
'name': name,
'expiration_date': expiration_date,
'auto_approved': True,
}
log_action('service_key_create', None, metadata=key_log_metadata)
log_action('service_key_approve', None, metadata=key_log_metadata)
2016-04-27 19:37:48 +00:00
return private_key, key.kid
2016-04-14 20:14:23 +00:00
if __name__ == '__main__':
parser = argparse.ArgumentParser(description='Generates a preshared key')
parser.add_argument('service', help='The service name for which the key is being generated')
parser.add_argument('name', help='The friendly name for the key')
parser.add_argument('--expiration', help='The optional expiration date/time for the key',
default=None, action=ParseDatetime)
parser.add_argument('--notes', help='Optional notes about the key', default=None)
args = parser.parse_args()
2016-04-29 20:21:19 +00:00
generated, _ = generate_key(args.service, args.name, args.expiration, args.notes)
2016-04-14 20:14:23 +00:00
print generated.exportKey('PEM')