Examples with SetupCertificateAnswer org.apache.cloudstack.ca.SetupCertificateAnswer used on opensource projects

Example 1 with SetupCertificateAnswer

use of org.apache.cloudstack.ca.SetupCertificateAnswer in project cloudstack by apache.

the class Agent method setupAgentCertificate.

private Answer setupAgentCertificate(final SetupCertificateCommand cmd) {
    final String certificate = cmd.getCertificate();
    final String privateKey = cmd.getPrivateKey();
    final String caCertificates = cmd.getCaCertificates();
    s_logger.debug("Importing received certificate to agent's keystore");
    final File agentFile = PropertiesUtil.findConfigFile("agent.properties");
    if (agentFile == null) {
        return new Answer(cmd, false, "Failed to find agent.properties file");
    }
    final String keyStoreFile = agentFile.getParent() + "/" + KeyStoreUtils.KS_FILENAME;
    final String certFile = agentFile.getParent() + "/" + KeyStoreUtils.CERT_FILENAME;
    final String privateKeyFile = agentFile.getParent() + "/" + KeyStoreUtils.PKEY_FILENAME;
    final String caCertFile = agentFile.getParent() + "/" + KeyStoreUtils.CACERT_FILENAME;
    try {
        FileUtils.writeStringToFile(new File(certFile), certificate, Charset.defaultCharset());
        FileUtils.writeStringToFile(new File(caCertFile), caCertificates, Charset.defaultCharset());
        s_logger.debug("Saved received client certificate to: " + certFile);
    } catch (IOException e) {
        throw new CloudRuntimeException("Unable to save received agent client and ca certificates", e);
    }
    Script script = new Script(_keystoreCertImportPath, 300000, s_logger);
    script.add(agentFile.getAbsolutePath());
    script.add(keyStoreFile);
    script.add(KeyStoreUtils.AGENT_MODE);
    script.add(certFile);
    script.add("");
    script.add(caCertFile);
    script.add("");
    script.add(privateKeyFile);
    script.add(privateKey);
    String result = script.execute();
    if (result != null) {
        throw new CloudRuntimeException("Unable to import certificate into keystore file");
    }
    return new SetupCertificateAnswer(true);
}

Example 2 with SetupCertificateAnswer

use of org.apache.cloudstack.ca.SetupCertificateAnswer in project cloudstack by apache.

the class VirtualRoutingResource method execute.

private Answer execute(final SetupCertificateCommand cmd) {
    final String args = String.format("/usr/local/cloud/systemvm/conf/agent.properties " + "/usr/local/cloud/systemvm/conf/%s %s " + "/usr/local/cloud/systemvm/conf/%s \"%s\" " + "/usr/local/cloud/systemvm/conf/%s \"%s\" " + "/usr/local/cloud/systemvm/conf/%s \"%s\"", KeyStoreUtils.KS_FILENAME, KeyStoreUtils.SSH_MODE, KeyStoreUtils.CERT_FILENAME, cmd.getEncodedCertificate(), KeyStoreUtils.CACERT_FILENAME, cmd.getEncodedCaCertificates(), KeyStoreUtils.PKEY_FILENAME, cmd.getEncodedPrivateKey());
    ExecutionResult result = _vrDeployer.executeInVR(cmd.getRouterAccessIp(), KeyStoreUtils.KS_IMPORT_SCRIPT, args, Duration.standardMinutes(15));
    return new SetupCertificateAnswer(result.isSuccess());
}

Example 3 with SetupCertificateAnswer

use of org.apache.cloudstack.ca.SetupCertificateAnswer in project cloudstack by apache.

the class LibvirtPostCertificateRenewalCommandWrapper method execute.

@Override
public Answer execute(final PostCertificateRenewalCommand command, final LibvirtComputingResource serverResource) {
    s_logger.info("Restarting libvirt after certificate provisioning/renewal");
    if (command != null) {
        final int timeout = 30000;
        Script script = new Script(true, "service", timeout, s_logger);
        script.add("libvirtd");
        script.add("restart");
        script.execute();
        return new SetupCertificateAnswer(true);
    }
    return new SetupCertificateAnswer(false);
}