Class: CertificateManager

Inherits:

Object

• Object
• CertificateManager

Defined in:

app/models/certificate_manager.rb

Instance Attribute Summary

• #interpreter ⇒ Object readonly

  Returns the value of attribute interpreter.

Class Method Summary

• .save_all_and_restart ⇒ Object

Instance Method Summary

• #dkim_cert_gen(domain, selector) ⇒ Object
• #https_cert_gen(params) ⇒ Object
• #initialize ⇒ CertificateManager constructor

  A new instance of CertificateManager.

• #smtpd_cert_gen(params) ⇒ Object

Constructor Details

#initialize ⇒ CertificateManager

Returns a new instance of CertificateManager.

# File 'app/models/certificate_manager.rb', line 10

def initialize
  @i = @interpreter = AutomateIt.new
end

Instance Attribute Details

#interpreter ⇒ Object (readonly)

Returns the value of attribute interpreter.

# File 'app/models/certificate_manager.rb', line 3

def interpreter
  @interpreter
end

Class Method Details

.save_all_and_restart ⇒ Object

# File 'app/models/certificate_manager.rb', line 5

def self.save_all_and_restart
  sm = CertificateManager.new
  sm.send 'smtpd_cert_gen', {}
end

Instance Method Details

#dkim_cert_gen(domain, selector) ⇒ Object

# File 'app/models/certificate_manager.rb', line 30

def dkim_cert_gen(domain, selector)
  @i.shell_manager.sh("opendkim-genkey -r -s #{selector} -d #{domain} -D /etc/ssl/dkim")
  @i.shell_manager.chown 'opendkim', 'opendkim', "/etc/ssl/dkim/#{selector}.private"

  @i.chown 'opendkim', 'opendkim', "/etc/ssl/dkim/#{selector}.private"
  @i.chown 'opendkim', 'rmails', "/etc/ssl/dkim/#{selector}.txt"
  @i.chmod 0660, "/etc/ssl/dkim/#{selector}.txt"

  # correct bad dns record
  edit "/etc/ssl/dkim/#{selector}.txt" do
    replace ';=rsa;', ";k=rsa;"
  end

  key_table = "#{selector}._domainkey.#{domain} #{domain}:#{selector}:/etc/ssl/dkim/#{selector}.private"
  signing_table = "*@#{domain} #{selector}._domainkey.#{domain}"

  @i.edit :file => '/etc/opendkim/KeyTable' do
    append key_table
  end
  @i.edit :file => '/etc/opendkim/SigningTable' do
    append signing_table
  end
end

#https_cert_gen(params) ⇒ Object

# File 'app/models/certificate_manager.rb', line 25

def https_cert_gen(params)
  params[:email] ||= 'fandisek@rmails.com'
  @i.shell_manager.sh "openssl req -new -newkey rsa:4096 -x509 -days 3650 -nodes -out /etc/ssl/certs/https.pem -keyout /etc/ssl/private/https.pem -subj /C=/ST=/L=/O=/OU=/CN=#{params[:name]||Property.find_by_key('mydomain').value}/emailAddress=#{params[:email]}"
end

#smtpd_cert_gen(params) ⇒ Object

# File 'app/models/certificate_manager.rb', line 14

def smtpd_cert_gen(params)
  #pass = SecureRandom.base64(25)
  #@i.edit :file => pass_file = @i.mktemp do
  #  append pass
  #end
  params[:email] ||= 'fandisek@rmails.com' # Property.find_by_key('postmaster').value
  @i.shell_manager.sh "openssl req -new -newkey rsa:4096 -x509 -days 3650 -nodes -out /etc/ssl/certs/smtpd.pem -keyout /etc/ssl/private/smtpd.pem -subj /C=#{params[:country]}/ST=#{params[:state]}/L=#{params[:locality]}/O=#{params[:org]}/OU=#{params[:org_unit]}/CN=#{params[:name]||Property.find_by_key('myhostname').value}/emailAddress=#{params[:email]}"
  #@i.shell_manager.rm pass_file
  #pass
end