/app.py - Komentovat - Aplikace pro správu X.509 certifikátů (Yoso Czech s.r.o.) - JMSD - Redmine

| Větev: | Tag: | Revize:

aswi2021jmsd-gitlab4/app.py @ da0fc952

1	62d64d21	Stanislav Král	import os
2	1fa243ca	Jan Pašek
3	b543de69	Captain_Trojan	from flask import Flask, redirect, request
4	1fa243ca	Jan Pašek	from injector import Injector
5	0cf35f70	Stanislav Král	from flask_injector import FlaskInjector
6	1fa243ca	Jan Pašek
7			from src.config import configuration
8	d78aa613	Jan Pašek	from src.config.configuration import Configuration
9	1fa243ca	Jan Pašek	from src.config.connection_provider import ConnectionProvider
10	5b57121e	Captain_Trojan	from src.controllers.certificates_controller import CertController
11	b1fa358f	Jan Pašek	from src.controllers.crl_ocsp_controller import CrlOcspController
12	81dbb479	Jan Pašek	from src.services.cryptography import CryptographyService, CryptographyException
13	ca436714	David Friesecký	from src.utils.logger import Logger
14	6e333f54	Stanislav Král
15	61535019	Stanislav Král	app = Flask(__name__)
16	6e333f54	Stanislav Král
17
18			@app.route('/')
19			def index():
20	2e646e3b	Jan Pašek	return redirect("/static/index.html")
21	6e333f54	Stanislav Král
22
23	5b57121e	Captain_Trojan	@app.route('/api/certificates', methods=["POST"])
24	0cf35f70	Stanislav Král	def create_certificate(certificate_controller: CertController):
25	1fa243ca	Jan Pašek	return certificate_controller.create_certificate()
26	5b57121e	Captain_Trojan
27
28			@app.route('/api/certificates', methods=["GET"])
29	0cf35f70	Stanislav Král	def get_cert_list(certificate_controller: CertController):
30	1fa243ca	Jan Pašek	return certificate_controller.get_certificate_list()
31	5b57121e	Captain_Trojan
32
33	fb987403	Captain_Trojan	@app.route('/api/certificates/<id>', methods=["GET"])
34	0cf35f70	Stanislav Král	def get_cert(id, certificate_controller: CertController):
35	1fa243ca	Jan Pašek	return certificate_controller.get_certificate_by_id(id)
36	fb987403	Captain_Trojan
37
38	2cecaf70	Jan Pašek	@app.route('/api/certificates/<id>', methods=["PATCH"])
39			def set_certificate_status(id, certificate_controller: CertController):
40			return certificate_controller.set_certificate_status(id)
41
42
43	f808fd93	Captain_Trojan	@app.route('/api/certificates/<id>', methods=["DELETE"])
44			def delete_certificate(id, certificate_controller: CertController):
45			return certificate_controller.delete_certificate(id)
46
47
48	5b6d9513	Captain_Trojan	@app.route('/api/certificates/<id>/details', methods=["GET"])
49	0cf35f70	Stanislav Král	def get_cert_details(id, certificate_controller: CertController):
50	1fa243ca	Jan Pašek	return certificate_controller.get_certificate_details_by_id(id)
51	5b6d9513	Captain_Trojan
52
53	d53c2fdc	Captain_Trojan	@app.route('/api/certificates/<id>/root', methods=["GET"])
54	0cf35f70	Stanislav Král	def get_cert_root(id, certificate_controller: CertController):
55	1fa243ca	Jan Pašek	return certificate_controller.get_certificate_root_by_id(id)
56	d53c2fdc	Captain_Trojan
57
58	aa740737	Captain_Trojan	@app.route('/api/certificates/<id>/chain', methods=["GET"])
59	0cf35f70	Stanislav Král	def get_cert_chain(id, certificate_controller: CertController):
60	1fa243ca	Jan Pašek	return certificate_controller.get_certificate_trust_chain_by_id(id)
61
62	f808fd93	Captain_Trojan
63	780c6d9c	Jan Pašek	@app.route('/api/certificates/<id>/privatekey', methods=["GET"])
64	ce8b9aaf	Stanislav Král	def get_private_key_of_a_certificate(id, certificate_controller: CertController):
65			return certificate_controller.get_private_key_of_a_certificate(id)
66	1fa243ca	Jan Pašek
67	f808fd93	Captain_Trojan
68	780c6d9c	Jan Pašek	@app.route('/api/certificates/<id>/publickey', methods=["GET"])
69	cfda1725	Stanislav Král	def get_public_key_of_a_certificate(id, certificate_controller: CertController):
70			return certificate_controller.get_public_key_of_a_certificate(id)
71
72	f808fd93	Captain_Trojan
73	b1fa358f	Jan Pašek	@app.route('/api/crl/<id>', methods=["GET"])
74			def get_crl_of_issuer(id, crl_ocsp_controller: CrlOcspController):
75			return crl_ocsp_controller.get_crl(id)
76
77
78	b543de69	Captain_Trojan	@app.route('/api/ocsp/<id>/<path:ocsp_request>', methods=["GET"])
79			def get_ocsp_of_issuer_get(id, ocsp_request, crl_ocsp_controller: CrlOcspController):
80			return crl_ocsp_controller.get_ocsp_from_base64(id, ocsp_request)
81
82
83			@app.route('/api/ocsp/<id>', methods=["POST"])
84			def get_ocsp_of_issuer_post(id, crl_ocsp_controller: CrlOcspController):
85			return crl_ocsp_controller.get_ocsp_from_der(id, request.data)
86
87
88	977845e0	Stanislav Král	@app.route('/api/certificates/<id>/identity', methods=["POST"])
89	1d8ff0a3	Stanislav Král	def generate_certificate_pkcs_identity(id, certificate_controller: CertController):
90			return certificate_controller.generate_certificate_pkcs_identity(id)
91
92
93	da0fc952	Stanislav Král	@app.errorhandler(CryptographyException)
94			def cryptography_error(e, certificate_controller: CertController):
95			return certificate_controller.handle_cryptography_error(e)
96
97
98	61535019	Stanislav Král	def initialize_app(application) -> bool:
99	81dbb479	Jan Pašek	"""
100			Initializes the application
101			- configure dependency injection
102			- check whether OpenSSL is on the system
103	61535019	Stanislav Král	:param application Flask Application to be initialized.
104			:return: boolean flag indicating whether initialization was successful or not
105	81dbb479	Jan Pašek	"""
106	0cf35f70	Stanislav Král	modules = [configuration.configure_env_variable, ConnectionProvider]
107			injector = Injector(modules)
108	61535019	Stanislav Král	FlaskInjector(app=application, modules=modules)
109	aa740737	Captain_Trojan
110	d78aa613	Jan Pašek	config = injector.get(Configuration)
111			configuration.configure_logging(config)
112
113	688c63b7	Jan Pašek	Logger.info(f"Using configuration file: {config.config_file}")
114
115	81dbb479	Jan Pašek	# There's a little dependency on the CryptoService, which is not a pretty thing from
116			# architectural point of view. However it is only a minimal piece of code and
117			# it makes sense to do it in this way instead of trying to run openssl via subprocess here
118			cryptography_service = injector.get(CryptographyService)
119			try:
120			# if version string is returned, OpenSSL is present on the system
121	ca436714	David Friesecký	Logger.info(f"Using {cryptography_service.get_openssl_version()}")
122	81dbb479	Jan Pašek	return True
123			except CryptographyException:
124			# If getting the version string throws an exception the OpenSSL is not available
125			print("OpenSSL was not located on the system. Application will now exit.")
126	ca436714	David Friesecký	Logger.error(f"OpenSSL was not located on the system. Application will now exit.")
127	81dbb479	Jan Pašek	return False
128
129	aa740737	Captain_Trojan
130	61535019	Stanislav Král	# app initialization must follow endpoint declaration (after all Flask decoration)
131			with app.app_context():
132			if not initialize_app(app):
133			print("Failed to initialize app, aborting...")
134	ca436714	David Friesecký	Logger.error(f"Failed to initialize app, aborting...")
135	61535019	Stanislav Král	exit(-1)
136
137	6e333f54	Stanislav Král	if __name__ == '__main__':
138	1fa243ca	Jan Pašek	app_host = "0.0.0.0"
139			app_port = 5000
140	62d64d21	Stanislav Král
141	9832694f	Stanislav Král	# TODO better load this from config.py
142	62d64d21	Stanislav Král	if "FLASK_HOST" in os.environ:
143	1fa243ca	Jan Pašek	app_host = os.environ["FLASK_HOST"]
144	62d64d21	Stanislav Král
145			if "FLASK_PORT" in os.environ:
146	1fa243ca	Jan Pašek	app_host = os.environ["FLASK_PORT"]
147	62d64d21	Stanislav Král
148	1fa243ca	Jan Pašek	app.run(host=app_host, port=app_port)

Projekt

Obecné

Profil

ASWI - Pokročilé softwarové inženýrství » ASWI 2021 » Aplikace pro správu X.509 certifikátů (Yoso Czech s.r.o.) - JMSD