certman 0.4.2 → 0.5.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +4 -4
- data/lib/certman/client.rb +20 -9
- data/lib/certman/resource/route53.rb +8 -8
- data/lib/certman/resource/ses.rb +5 -5
- data/lib/certman/version.rb +1 -1
- metadata +1 -1
checksums.yaml
CHANGED
@@ -1,7 +1,7 @@
|
|
1
1
|
---
|
2
2
|
SHA1:
|
3
|
-
metadata.gz:
|
4
|
-
data.tar.gz:
|
3
|
+
metadata.gz: '087eb221a45056f14751bf7896d99645c3dc31be'
|
4
|
+
data.tar.gz: dd1693769ace09e80d6ad0c95363fde58d27e4e8
|
5
5
|
SHA512:
|
6
|
-
metadata.gz:
|
7
|
-
data.tar.gz:
|
6
|
+
metadata.gz: 6046fc4421e11441b9098c6039d3bbeb89edf4192d6fbeb3429333c9d66aa863c01921f7b71cbc03578064a0e0ccacc2b8327777fbb2da74debf902643754f64
|
7
|
+
data.tar.gz: 9416242570398ad5f2273b620542b50c8aa0ab90f450d8d257906c6f178203944ec796af2b4c6dc145cf182df8bf5ce792e8e8bb63d2a99672821a02c4c9e8ec
|
data/lib/certman/client.rb
CHANGED
@@ -166,31 +166,42 @@ module Certman
|
|
166
166
|
revert_active_rue_set
|
167
167
|
s.success
|
168
168
|
end
|
169
|
+
when :acm_certificate
|
170
|
+
if @do_rollback
|
171
|
+
s = spinner('[ACM] Delete Certificate')
|
172
|
+
delete_certificate
|
173
|
+
@cert_arn = nil
|
174
|
+
s.success
|
175
|
+
end
|
169
176
|
end
|
170
177
|
end
|
171
178
|
end
|
172
179
|
|
173
180
|
def bucket_name
|
174
|
-
@bucket_name ||= if "#{
|
175
|
-
"#{
|
181
|
+
@bucket_name ||= if "#{email_domain}-certman".length < 63
|
182
|
+
"#{email_domain}-certman"
|
176
183
|
else
|
177
|
-
"#{Digest::SHA1.hexdigest(
|
184
|
+
"#{Digest::SHA1.hexdigest(email_domain)}-certman"
|
178
185
|
end
|
179
186
|
end
|
180
187
|
|
188
|
+
def email_domain
|
189
|
+
@domain.sub(/\A(www|\*)\./, '')
|
190
|
+
end
|
191
|
+
|
181
192
|
def rule_name
|
182
|
-
@rule_name ||= if "RuleCertman_#{
|
183
|
-
"RuleCertman_#{
|
193
|
+
@rule_name ||= if "RuleCertman_#{email_domain}".length < 64
|
194
|
+
"RuleCertman_#{email_domain}"
|
184
195
|
else
|
185
|
-
"RuleCertman_#{Digest::SHA1.hexdigest(
|
196
|
+
"RuleCertman_#{Digest::SHA1.hexdigest(email_domain)}"
|
186
197
|
end
|
187
198
|
end
|
188
199
|
|
189
200
|
def rule_set_name
|
190
|
-
@rule_set_name ||= if "RuleSetCertman_#{
|
191
|
-
"RuleSetCertman_#{
|
201
|
+
@rule_set_name ||= if "RuleSetCertman_#{email_domain}".length < 64
|
202
|
+
"RuleSetCertman_#{email_domain}"
|
192
203
|
else
|
193
|
-
"RuleSetCertman_#{Digest::SHA1.hexdigest(
|
204
|
+
"RuleSetCertman_#{Digest::SHA1.hexdigest(email_domain)}"
|
194
205
|
end
|
195
206
|
end
|
196
207
|
|
@@ -13,7 +13,7 @@ module Certman
|
|
13
13
|
{
|
14
14
|
action: 'CREATE',
|
15
15
|
resource_record_set: {
|
16
|
-
name: "_amazonses.#{
|
16
|
+
name: "_amazonses.#{email_domain}",
|
17
17
|
resource_records: [
|
18
18
|
{
|
19
19
|
value: '"' + @token + '"'
|
@@ -37,7 +37,7 @@ module Certman
|
|
37
37
|
{
|
38
38
|
action: 'CREATE',
|
39
39
|
resource_record_set: {
|
40
|
-
name:
|
40
|
+
name: email_domain,
|
41
41
|
resource_records: [
|
42
42
|
{
|
43
43
|
value: "10 inbound-smtp.#{Aws.config[:region]}.amazonaws.com"
|
@@ -61,7 +61,7 @@ module Certman
|
|
61
61
|
{
|
62
62
|
action: 'DELETE',
|
63
63
|
resource_record_set: {
|
64
|
-
name: "_amazonses.#{
|
64
|
+
name: "_amazonses.#{email_domain}",
|
65
65
|
resource_records: [
|
66
66
|
{
|
67
67
|
value: '"' + @token + '"'
|
@@ -85,7 +85,7 @@ module Certman
|
|
85
85
|
{
|
86
86
|
action: 'DELETE',
|
87
87
|
resource_record_set: {
|
88
|
-
name:
|
88
|
+
name: email_domain,
|
89
89
|
resource_records: [
|
90
90
|
{
|
91
91
|
value: "10 inbound-smtp.#{Aws.config[:region]}.amazonaws.com"
|
@@ -117,19 +117,19 @@ module Certman
|
|
117
117
|
def check_txt_rset
|
118
118
|
res = route53.test_dns_answer(
|
119
119
|
hosted_zone_id: @hosted_zone_id,
|
120
|
-
record_name: "_amazonses.#{
|
120
|
+
record_name: "_amazonses.#{email_domain}.",
|
121
121
|
record_type: 'TXT'
|
122
122
|
)
|
123
|
-
raise "_amazonses.#{
|
123
|
+
raise "_amazonses.#{email_domain} TXT already exist" unless res.record_data.empty?
|
124
124
|
end
|
125
125
|
|
126
126
|
def check_mx_rset
|
127
127
|
res = route53.test_dns_answer(
|
128
128
|
hosted_zone_id: @hosted_zone_id,
|
129
|
-
record_name: "#{
|
129
|
+
record_name: "#{email_domain}.",
|
130
130
|
record_type: 'MX'
|
131
131
|
)
|
132
|
-
raise "#{
|
132
|
+
raise "#{email_domain} MX already exist" unless res.record_data.empty?
|
133
133
|
end
|
134
134
|
|
135
135
|
def route53
|
data/lib/certman/resource/ses.rb
CHANGED
@@ -4,7 +4,7 @@ module Certman
|
|
4
4
|
REGIONS = %w(us-east-1 us-west-2 eu-west-1)
|
5
5
|
|
6
6
|
def create_domain_identity
|
7
|
-
res = ses.verify_domain_identity(domain:
|
7
|
+
res = ses.verify_domain_identity(domain: email_domain)
|
8
8
|
@token = res.verification_token
|
9
9
|
end
|
10
10
|
|
@@ -13,10 +13,10 @@ module Certman
|
|
13
13
|
100.times do
|
14
14
|
res = ses.get_identity_verification_attributes(
|
15
15
|
identities: [
|
16
|
-
|
16
|
+
email_domain
|
17
17
|
]
|
18
18
|
)
|
19
|
-
if res.verification_attributes[
|
19
|
+
if res.verification_attributes[email_domain].verification_status == 'Success'
|
20
20
|
# success
|
21
21
|
is_break = true
|
22
22
|
break
|
@@ -28,7 +28,7 @@ module Certman
|
|
28
28
|
end
|
29
29
|
|
30
30
|
def delete_domain_identity
|
31
|
-
ses.delete_identity(identity:
|
31
|
+
ses.delete_identity(identity: email_domain)
|
32
32
|
end
|
33
33
|
|
34
34
|
def create_rule_set
|
@@ -38,7 +38,7 @@ module Certman
|
|
38
38
|
def create_rule
|
39
39
|
ses.create_receipt_rule(
|
40
40
|
rule: {
|
41
|
-
recipients: ["admin@#{
|
41
|
+
recipients: ["admin@#{email_domain}"],
|
42
42
|
actions: [
|
43
43
|
{
|
44
44
|
s3_action: {
|
data/lib/certman/version.rb
CHANGED