-
Notifications
You must be signed in to change notification settings - Fork 1.9k
/
tls_ca_info.go
91 lines (77 loc) · 2.07 KB
/
tls_ca_info.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
package command
import (
"fmt"
"os"
"strings"
"github.com/hashicorp/nomad/helper/tlsutil"
"github.com/posener/complete"
"github.com/ryanuber/columnize"
)
type TLSCAInfoCommand struct {
Meta
}
func (c *TLSCAInfoCommand) Help() string {
helpText := `
Usage: nomad tls ca info <CA file>
Show information about a certificate authority.
`
return strings.TrimSpace(helpText)
}
func (c *TLSCAInfoCommand) AutocompleteFlags() complete.Flags {
return mergeAutocompleteFlags(c.Meta.AutocompleteFlags(FlagSetClient),
complete.Flags{})
}
func (c *TLSCAInfoCommand) AutocompleteArgs() complete.Predictor {
return complete.PredictOr(
complete.PredictFiles("*.pem"),
)
}
func (c *TLSCAInfoCommand) Synopsis() string {
return "Show certificate authority information"
}
func (c *TLSCAInfoCommand) Name() string { return "tls cert info" }
func (c *TLSCAInfoCommand) Run(args []string) int {
flags := c.Meta.FlagSet(c.Name(), FlagSetClient)
flags.Usage = func() { c.Ui.Output(c.Help()) }
if err := flags.Parse(args); err != nil {
return 1
}
// Check that we got no arguments
args = flags.Args()
if l := len(args); l < 0 || l > 1 {
c.Ui.Error("This command takes up to one argument")
c.Ui.Error(commandErrorText(c))
return 1
}
var certFile []byte
var err error
var file string
if len(args) == 0 {
c.Ui.Error(fmt.Sprintf("Error reading CA file: %v", err))
return 1
}
if len(args) == 1 {
file = args[0]
certFile, err = os.ReadFile(file)
if err != nil {
c.Ui.Error(fmt.Sprintf("Error reading CA file: %v", err))
return 1
}
}
certInfo, err := tlsutil.ParseCert(string(certFile))
if err != nil {
c.Ui.Error(err.Error())
return 1
}
// Format the certificate info
basic := []string{
fmt.Sprintf("Serial Number|%s", certInfo.SerialNumber),
fmt.Sprintf("Issuer CN|%s", certInfo.Issuer.CommonName),
fmt.Sprintf("Common Name|%s", certInfo.Subject),
fmt.Sprintf("Expiry Date|%s", certInfo.NotAfter),
fmt.Sprintf("Permitted DNS Domains|%s", certInfo.PermittedDNSDomains),
}
// Print out the information
c.Ui.Output(columnize.SimpleFormat(basic))
return 0
}