def _check_or_add_cert(self, name, domain, key, authorization):
if 'certificate' in domain:
return domain['certificate']
self._log('domain:{}: generating CSR...', name)
builder = x509.CertificateSigningRequestBuilder()
builder = builder.subject_name(x509.Name([
x509.NameAttribute(x509.oid.NameOID.COMMON_NAME, name),
]))
csr = builder.sign(key, hashes.SHA256(), backend)
self._log('domain:{}: done', name)
self._log('domain:{}: requesting certificate...', name)
certificate = self._client.new_certificate(self._key, csr)
domain['certificate'] = certificate
self._write_config()
self._log('domain:{}: done: {}', name, certificate)
return certificate
评论列表
文章目录
