class CfnVpn::Actions::Revoke
Public Class Methods
source_root()
click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 21 def self.source_root File.dirname(__FILE__) end
Public Instance Methods
apply_rekocation_list()
click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 43 def apply_rekocation_list vpn = CfnVpn::ClientVpn.new(@name,@options['region']) endpoint_id = vpn.get_endpoint_id() vpn.put_revoke_list(endpoint_id,"#{@cert_dir}/crl.pem") CfnVpn::Log.logger.info("revoked client #{@options['client_cn']} from #{endpoint_id}") end
revoke_certificate()
click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 34 def revoke_certificate cert = CfnVpn::Certificates.new(@build_dir,@name,@options['easyrsa_local']) s3 = CfnVpn::S3.new(@options['region'],@options['bucket'],@name) s3.get_object("#{@cert_dir}/ca.tar.gz") s3.get_object("#{@cert_dir}/#{@options['client_cn']}.tar.gz") CfnVpn::Log.logger.info "Generating new client certificate #{@options['client_cn']} using openvpn easy-rsa" CfnVpn::Log.logger.debug cert.revoke_client(@options['client_cn']) end
set_directory()
click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 29 def set_directory @build_dir = "#{CfnVpn.cfnvpn_path}/#{@name}" @cert_dir = "#{@build_dir}/certificates" end
set_loglevel()
click to toggle source
# File lib/cfnvpn/actions/revoke.rb, line 25 def set_loglevel CfnVpn::Log.logger.level = Logger::DEBUG if @options['verbose'] end