Automate SSL creation in Fabric (Python) -

-

i'm using fabric automate ssl creation, when run like

local('openssl genrsa  -out /etc/ssl/'+hostname+'/'+hostname+'.key 2048')

it prompts me country, state, email address, etc. there can (possibly openssl.cnf?) prevent need user input prompts, or people hack using pexpect?

update:

if put prompt=no in openssl.cnf, cd /ssdhome/development/server, run:

sudo openssl req -new -key './server.key' -out './server.csr' -config='./openssl.cnf'

openssl prints out help information instead of running above command. have gone wrong?

update 2: -config should not have '=' sign, space. solved. linked copy of openssl.cnf working:

https://help.ubuntu.com/community/openssl

see how answer prompts automatically python fabric?

from ilogue.fexpect import expect, expecting, run  def sample():      private_key = "password"     hostname = "ubuntu"     output_dir = '/etc/ssl/' + hostname     prompts = []     prompts += expect('enter pass phrase private.key:',private_key)     prompts += expect('verifying - enter pass phrase private.key:private_key',private_key)     prompts += expect('enter pass phrase %s/server.key:' % output_dir, private_key)     prompts += expect('country name \(2 letter code\) \[au\]:','au')     prompts += expect('state or province name \(full name\) \[some-state\]:','state')     prompts += expect('locality name \(eg, city\) \[\]:','city')     prompts += expect('organization name \(eg, company\) \[internet widgits pty ltd\]:','company')     prompts += expect('organizational unit name \(eg, section\) \[\]:','section')     prompts += expect('common name \(e.g. server fqdn or name\) \[\]:','fqdn')     prompts += expect('email address \[\]:','email@foo.com')     prompts += expect('a challenge password \[\]:','challenge_password')     prompts += expect('an optional company name \[\]:','optional_company')      expecting(prompts):         run('openssl genrsa -des3 -out %s/server.key 2048' % output_dir)         run('openssl req -new -key %s/server.key -out %s/server.csr' % (output_dir, output_dir))  # fab sample -h localhost

the regular expression applied expect(), need escape [, ], (, ) ...


Comments

Post a Comment

Popular posts from this blog

html5 - What is breaking my page when printing? -

-
Image
i have questioner , don't know why when printing it's creating break before first question. live demo (link) i able resolve issue removing fieldset container had wrapped in.. having fieldset element causing of fields grouped together, , since not fit on first page, being pushed second page. removing fieldset element, able firefox print first 2 questions on page 1 identically chrome. it seems not new problem firefox , fieldset not playing nice found old bugzilla ticket 2008 has persisted , still being commented on in 2014 (link) if retaining fieldset important, found solution else came here (link) <script type='text/javascript'> $(window).bind('beforeprint', function(){ $('fieldset').each( function(item) { $(this).replacewith($('<div class="fieldset">' + this.innerhtml + '</div>')); } ) }); $(window).bind(
Read more

c# - must be a non-abstract type with a public parameterless constructor in redis -

-
when save object, got below error must non-abstract type public parameterless constructor in order use parameter 't' in generic type or method 'servicestack.redis.redisclient.store<t>(t) redisclass.getinstnace().store(msg); // error here redisclass.getinstnace().save(); as third party's class, can not edit how save object? could create wrapper around third party object call constructor, store wrapper? e.g. public class mywrapper { public thirdpartyobject thirdpartyinstance { get; set; } public mywrapper() { thirdpartyinstance = new thirdpartyobject("constructors"); } }
Read more

ajax - PHP/JSON Login script (Twitter style) not setting sessions -

-
i'm having trouble getting twitter style login work properly, reason gets stuck at session_register("useremail"); session_register("userpass"); and doesn't redirect after it. if enter wrong account data, works , appropriate error message pops up. this full code: <?php if(empty($_post['email']) || empty($_post['password'])) { die(msg(0,"all fields required")); } if(!(preg_match("/^[\.a-z0-9_\-\+]+[@][a-z0-9_\-]+([.][a-z0-9_\-]+)+[a-z]{1,4}$/", $_post['email']))) die(msg(0,"you haven't provided valid e-mail")); $host="localhost"; $username="root"; $password="x"; $db_name="x"; $tbl_name="x"; mysql_connect("$host", "$username", "$password")or die("cannot connect"); mysql_select_db("$db_name")or die("cannot select db"); $useremail=$_post['email']; $userpass=
Read more