def _handle_cert(self, domain):
rawcert = request.environ['ssl_certificate']
certconfig = self._get_cert_config_if_allowed(domain, rawcert)
logger.debug('Fetching certificate for domain %s', domain)
(key, crt, chain) = self.acmeproxy.get_cert(
domain=domain,
altname=certconfig.altname,
rekey=certconfig.rekey,
renew_margin=certconfig.renew_margin,
force_renew=('force_renew' in request.query and request.query['force_renew'] == 'true'), # pylint: disable=unsupported-membership-test,unsubscriptable-object
auto_renew=certconfig.renew_on_fetch
)
return {
'crt': crt.decode(),
'key': key.decode(),
'chain': chain.decode()
}
评论列表
文章目录
