opentf-toolkit-nightly 0.63.0.dev1410__py3-none-any.whl → 0.63.0.dev1418__py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (6) hide show
  1. opentf/scripts/startup.py +29 -76
  2. {opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/METADATA +1 -1
  3. {opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/RECORD +6 -6
  4. {opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/WHEEL +1 -1
  5. {opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/licenses/LICENSE +0 -0
  6. {opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/top_level.txt +0 -0
opentf/scripts/startup.py CHANGED
@@ -434,90 +434,43 @@ def maybe_generate_token() -> None:
434
434
 
435
435
 
436
436
  def maybe_populate_keystore() -> None:
437
- """Populate Java keystore if CURL_CA_BUNDLE defined."""
437
+ """Populate keystore if CURL_CA_BUNDLE defined."""
438
438
  if (ca_bundle := os.environ.get('CURL_CA_BUNDLE')) is None:
439
439
  return
440
440
  if not os.path.isfile(ca_bundle):
441
441
  logging.error('CURL_CA_BUNDLE "%s" does not exist, aborting.', ca_bundle)
442
442
  sys.exit(1)
443
443
 
444
- with open(ca_bundle, 'r', encoding='utf-8') as bundle_file:
445
- ca_list = bundle_file.read().split(CA_END)
446
- if not ca_list[-1].rstrip():
447
- ca_list.pop()
444
+ add_keystore_certificate(ca_bundle)
448
445
 
449
- if truststore := os.environ.get('JAVA_TRUSTSTORE'):
450
- logging.debug('Using truststore "%s".', truststore)
451
- keystore = ('-keystore', truststore)
452
- else:
453
- logging.debug('Using default truststore.')
454
- keystore = ('-cacerts',)
455
-
456
- for ca_counter, ca in enumerate(ca_list):
457
- add_keystore_certificate(ca_counter, f'{ca}{CA_END}', keystore)
458
-
459
-
460
- def add_keystore_certificate(
461
- ca_counter: int, ca: str, keystore: Tuple[str, ...]
462
- ) -> None:
463
- """Add certificate to keystore.
464
-
465
- !!! warning
466
- This calls `keytool`, which requires root privileges, as it
467
- add certificates to the system's keystore.
468
-
469
- Certificates will have an alias of the form:
470
446
 
471
- `opentf:{ca_counter}_{random string}`
472
-
473
- # Required parameters
474
-
475
- - ca_counter: an integer, the certificate position in the bundle
476
- - ca: the certificate as a string
477
- """
478
- with tempfile.NamedTemporaryFile('w') as ca_file:
479
- ca_path = ca_file.name
480
- ca_alias = f'opentf:{ca_counter}_{os.path.basename(ca_path)}'
481
- try:
482
- ca_file.write(ca)
483
- logging.debug('File "%s" written.', ca_path)
484
- except IOError as err:
485
- logging.error('An error occurred while writing the file: %s.', err)
486
- sys.exit(1)
487
- ca_file.flush()
488
- try:
489
- ca_import_execute = subprocess.run(
490
- [
491
- 'keytool',
492
- '-importcert',
493
- '-alias',
494
- ca_alias,
495
- '-file',
496
- ca_path,
497
- '-storepass',
498
- 'changeit',
499
- '-noprompt',
500
- *keystore,
501
- ],
502
- stdout=subprocess.PIPE,
503
- stderr=subprocess.STDOUT,
504
- check=True,
505
- )
506
- logging.debug(
507
- 'Certificate %d successfully added to keystore with alias %s:\n%s.',
508
- ca_counter,
509
- ca_alias,
510
- ca_import_execute.stdout.decode().rstrip(''),
511
- )
512
- except subprocess.CalledProcessError as err:
513
- logging.error(
514
- 'Failed to add certificate %d with alias %s to keystore: %s.\n%s',
515
- ca_counter,
516
- ca_alias,
517
- err,
518
- err.stdout.decode().rstrip(''),
519
- )
520
- sys.exit(1)
447
+ def add_keystore_certificate(ca_bundle: str) -> None:
448
+ try:
449
+ subprocess.run(
450
+ [
451
+ 'openssl',
452
+ 'pkcs12',
453
+ '-export',
454
+ '-nokeys',
455
+ '-in',
456
+ ca_bundle,
457
+ '-password',
458
+ 'pass:',
459
+ '-out',
460
+ '/app/keystore.p12',
461
+ ],
462
+ stdout=subprocess.PIPE,
463
+ stderr=subprocess.STDOUT,
464
+ check=True,
465
+ )
466
+ logging.debug('Certificate successfully added to keystore.')
467
+ except subprocess.CalledProcessError as err:
468
+ logging.error(
469
+ 'Failed to add certificate to keystore: %s\n%s',
470
+ err,
471
+ err.stdout.decode().rstrip(''),
472
+ )
473
+ sys.exit(1)
521
474
 
522
475
 
523
476
  def _ensure_abac_if_defined(name, value):
{opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/METADATA RENAMED
@@ -1,6 +1,6 @@
1
1
  Metadata-Version: 2.4
2
2
  Name: opentf-toolkit-nightly
3
- Version: 0.63.0.dev1410
3
+ Version: 0.63.0.dev1418
4
4
  Summary: OpenTestFactory Orchestrator Toolkit
5
5
  Home-page: https://gitlab.com/henixdevelopment/open-source/opentestfactory/python-toolkit
6
6
  Author: Martin Lafaix
{opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/RECORD RENAMED
@@ -56,13 +56,13 @@ opentf/schemas/opentestfactory.org/v1beta1/ServiceConfig.json,sha256=m5ZgWAKbutu
56
56
  opentf/schemas/opentestfactory.org/v1beta1/Workflow.json,sha256=QZ8mM9PhzsI9gTmwmKTWYNoRn--rtcM3L0PzgnPBfMU,15424
57
57
  opentf/schemas/opentestfactory.org/v1beta2/ServiceConfig.json,sha256=rEvK2YWL5lG94_qYgR_GnLWNsaQhaQ-2kuZdWJr5NnY,3517
58
58
  opentf/scripts/launch_java_service.sh,sha256=S0jAaCuv2sZy0Gf2NGBuPX-eD531rcM-b0fNyhmzSjw,2423
59
- opentf/scripts/startup.py,sha256=DLanDaXutUTYcG2PwoJ34QH-5G0TwfLUY_xy1VkVOqA,23202
59
+ opentf/scripts/startup.py,sha256=CZc4sKOQqox0X4R6qQ8GP-4OJwqewrt-XELJ5unG7o0,21456
60
60
  opentf/toolkit/__init__.py,sha256=YnH66dmePAIU7dq_xWFYTIEUrsL9qV9f82LRDiBzbzs,22057
61
61
  opentf/toolkit/channels.py,sha256=BQh5ztQmIKpxns6ozDNto4YpegktydPZyhOO9F3g-2Q,27731
62
62
  opentf/toolkit/core.py,sha256=jMBDIYZ8Qn3BvsysfKoG0iTtjOnZsggetpH3eXygCsI,9636
63
63
  opentf/toolkit/models.py,sha256=PNfXVQbeyOwDfaNrLjcfhYm6duMSlNWBtZsWZcs53ag,6583
64
- opentf_toolkit_nightly-0.63.0.dev1410.dist-info/licenses/LICENSE,sha256=xx0jnfkXJvxRnG63LTGOxlggYnIysveWIZ6H3PNdCrQ,11357
65
- opentf_toolkit_nightly-0.63.0.dev1410.dist-info/METADATA,sha256=JGYwdjQVyIzFakde1XO0lPfaQgH5qfY6RsHHSM6Bmfo,2215
66
- opentf_toolkit_nightly-0.63.0.dev1410.dist-info/WHEEL,sha256=DnLRTWE75wApRYVsjgc6wsVswC54sMSJhAEd4xhDpBk,91
67
- opentf_toolkit_nightly-0.63.0.dev1410.dist-info/top_level.txt,sha256=_gPuE6GTT6UNXy1DjtmQSfCcZb_qYA2vWmjg7a30AGk,7
68
- opentf_toolkit_nightly-0.63.0.dev1410.dist-info/RECORD,,
64
+ opentf_toolkit_nightly-0.63.0.dev1418.dist-info/licenses/LICENSE,sha256=xx0jnfkXJvxRnG63LTGOxlggYnIysveWIZ6H3PNdCrQ,11357
65
+ opentf_toolkit_nightly-0.63.0.dev1418.dist-info/METADATA,sha256=ZlrRo3jDrv1hF_gDXgQmh6zztZ5NAKTCvti59zQx5EA,2215
66
+ opentf_toolkit_nightly-0.63.0.dev1418.dist-info/WHEEL,sha256=_zCd3N1l69ArxyTb8rzEoP9TpbYXkqRFSNOD5OuxnTs,91
67
+ opentf_toolkit_nightly-0.63.0.dev1418.dist-info/top_level.txt,sha256=_gPuE6GTT6UNXy1DjtmQSfCcZb_qYA2vWmjg7a30AGk,7
68
+ opentf_toolkit_nightly-0.63.0.dev1418.dist-info/RECORD,,
{opentf_toolkit_nightly-0.63.0.dev1410.dist-info → opentf_toolkit_nightly-0.63.0.dev1418.dist-info}/WHEEL RENAMED
@@ -1,5 +1,5 @@
1
1
  Wheel-Version: 1.0
2
- Generator: setuptools (80.4.0)
2
+ Generator: setuptools (80.9.0)
3
3
  Root-Is-Purelib: true
4
4
  Tag: py3-none-any
5
5