class CfnVpn::Actions::Revoke

Public Class Methods

source_root() click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 21
def self.source_root
  File.dirname(__FILE__)
end

Public Instance Methods

apply_rekocation_list() click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 43
def apply_rekocation_list
  vpn = CfnVpn::ClientVpn.new(@name,@options['region'])
  endpoint_id = vpn.get_endpoint_id()
  vpn.put_revoke_list(endpoint_id,"#{@cert_dir}/crl.pem")
  CfnVpn::Log.logger.info("revoked client #{@options['client_cn']} from #{endpoint_id}")
end
revoke_certificate() click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 34
def revoke_certificate
  cert = CfnVpn::Certificates.new(@build_dir,@name,@options['easyrsa_local'])
  s3 = CfnVpn::S3.new(@options['region'],@options['bucket'],@name)
  s3.get_object("#{@cert_dir}/ca.tar.gz")
  s3.get_object("#{@cert_dir}/#{@options['client_cn']}.tar.gz")
  CfnVpn::Log.logger.info "Generating new client certificate #{@options['client_cn']} using openvpn easy-rsa"
  CfnVpn::Log.logger.debug cert.revoke_client(@options['client_cn'])
end
set_directory() click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 29
def set_directory
  @build_dir = "#{CfnVpn.cfnvpn_path}/#{@name}"
  @cert_dir = "#{@build_dir}/certificates"
end
set_loglevel() click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 25
def set_loglevel
  CfnVpn::Log.logger.level = Logger::DEBUG if @options['verbose']
end