/
lxd_certificates.go
108 lines (86 loc) · 2.73 KB
/
lxd_certificates.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
package lxd
import (
"fmt"
"net/url"
"github.com/canonical/lxd/shared/api"
)
// Certificate handling functions
// GetCertificateFingerprints returns a list of certificate fingerprints.
func (r *ProtocolLXD) GetCertificateFingerprints() ([]string, error) {
// Fetch the raw URL values.
urls := []string{}
baseURL := "/certificates"
_, err := r.queryStruct("GET", baseURL, nil, "", &urls)
if err != nil {
return nil, err
}
// Parse it.
return urlsToResourceNames(baseURL, urls...)
}
// GetCertificates returns a list of certificates.
func (r *ProtocolLXD) GetCertificates() ([]api.Certificate, error) {
certificates := []api.Certificate{}
// Fetch the raw value
_, err := r.queryStruct("GET", "/certificates?recursion=1", nil, "", &certificates)
if err != nil {
return nil, err
}
return certificates, nil
}
// GetCertificate returns the certificate entry for the provided fingerprint.
func (r *ProtocolLXD) GetCertificate(fingerprint string) (*api.Certificate, string, error) {
certificate := api.Certificate{}
// Fetch the raw value
etag, err := r.queryStruct("GET", fmt.Sprintf("/certificates/%s", url.PathEscape(fingerprint)), nil, "", &certificate)
if err != nil {
return nil, "", err
}
return &certificate, etag, nil
}
// CreateCertificate adds a new certificate to the LXD trust store.
func (r *ProtocolLXD) CreateCertificate(certificate api.CertificatesPost) error {
// Send the request
_, _, err := r.query("POST", "/certificates", certificate, "")
if err != nil {
return err
}
return nil
}
// UpdateCertificate updates the certificate definition.
func (r *ProtocolLXD) UpdateCertificate(fingerprint string, certificate api.CertificatePut, ETag string) error {
err := r.CheckExtension("certificate_update")
if err != nil {
return err
}
// Send the request
_, _, err = r.query("PUT", fmt.Sprintf("/certificates/%s", url.PathEscape(fingerprint)), certificate, ETag)
if err != nil {
return err
}
return nil
}
// DeleteCertificate removes a certificate from the LXD trust store.
func (r *ProtocolLXD) DeleteCertificate(fingerprint string) error {
// Send the request
_, _, err := r.query("DELETE", fmt.Sprintf("/certificates/%s", url.PathEscape(fingerprint)), nil, "")
if err != nil {
return err
}
return nil
}
// CreateCertificateToken requests a certificate add token.
func (r *ProtocolLXD) CreateCertificateToken(certificate api.CertificatesPost) (Operation, error) {
err := r.CheckExtension("certificate_token")
if err != nil {
return nil, err
}
if !certificate.Token {
return nil, fmt.Errorf("Token needs to be true if requesting a token")
}
// Send the request
op, _, err := r.queryOperation("POST", "/certificates", certificate, "", true)
if err != nil {
return nil, err
}
return op, nil
}