Adds method to force regeneration of certs

[chuckbutler]

WIP - For talking points presently

Introduces the 'tls.regenerate_certificates' state, which allows consumer layers to reconfigure the primary ssl configuration certificate (on the master)

This has a side-effect of removing the flat file PKI database that is initially generated during TLS setup. This is unfortunate, but is a work-around to conform to expectations of the leader.

Follower behavior should be unchanged with this behavior.

[chuckbutler]

This also seems to correct the behavior of #22 when adding the force param.

[mbruzek]

replace this print with a log message.

[mbruzek]

I took a preliminary look at this code change. It seems a bit drastic to delete the entire easy-rsa directory to configure easy-rsa. Perhaps the reason you were having trouble configuring easy-rsa before it generated the certificate is the reactive framework runs all valid states asynchronously, the theory being your valid state was racing with the ca certificate creation.

As an alternate solution: How about adding an intermediary state between install() and the check_ca_status() method. This state could be triggered when easy-rsa installed and do some configuration. And then change the check_ca_status() to use the decorator @When('easy-rsa configured') or something like that? If that is not possible I would be curious to why it does not work.

[chuckbutler]

@mbruzek - Point taken regarding wholesale removal of the PKI DB. After some additional poking, this has been refactored to introduce and use an intermediary state which will invoke the proper reactive handler in the calling layer (in this case, swarm) letting it reconfigure the easyrsa configuration prior to generating the certs, without deleting anything.

can you TAL?

[mbruzek]

Minor nit, I don't see any of your new code using the log import. pep8 would not approve

[mbruzek]

One minor nit that should not prevent this code from going in. I did not test this code, but watched it work on @chuckbutler 's console.