mirror of
https://github.com/opentofu/opentofu.git
synced 2025-01-24 23:46:26 -06:00
309e697a52
This allows you to generate and sign certificates using a local CA.
113 lines
2.7 KiB
Go
113 lines
2.7 KiB
Go
package tls
|
|
|
|
import (
|
|
"crypto/sha1"
|
|
"crypto/x509/pkix"
|
|
"encoding/hex"
|
|
"strings"
|
|
|
|
"github.com/hashicorp/terraform/helper/schema"
|
|
"github.com/hashicorp/terraform/terraform"
|
|
)
|
|
|
|
func Provider() terraform.ResourceProvider {
|
|
return &schema.Provider{
|
|
ResourcesMap: map[string]*schema.Resource{
|
|
"tls_private_key": resourcePrivateKey(),
|
|
"tls_locally_signed_cert": resourceLocallySignedCert(),
|
|
"tls_self_signed_cert": resourceSelfSignedCert(),
|
|
"tls_cert_request": resourceCertRequest(),
|
|
},
|
|
}
|
|
}
|
|
|
|
func hashForState(value string) string {
|
|
if value == "" {
|
|
return ""
|
|
}
|
|
hash := sha1.Sum([]byte(strings.TrimSpace(value)))
|
|
return hex.EncodeToString(hash[:])
|
|
}
|
|
|
|
func nameFromResourceData(nameMap map[string]interface{}) (*pkix.Name, error) {
|
|
result := &pkix.Name{}
|
|
|
|
if value := nameMap["common_name"]; value != nil {
|
|
result.CommonName = value.(string)
|
|
}
|
|
if value := nameMap["organization"]; value != nil {
|
|
result.Organization = []string{value.(string)}
|
|
}
|
|
if value := nameMap["organizational_unit"]; value != nil {
|
|
result.OrganizationalUnit = []string{value.(string)}
|
|
}
|
|
if value := nameMap["street_address"]; value != nil {
|
|
valueI := value.([]interface{})
|
|
result.StreetAddress = make([]string, len(valueI))
|
|
for i, vi := range valueI {
|
|
result.StreetAddress[i] = vi.(string)
|
|
}
|
|
}
|
|
if value := nameMap["locality"]; value != nil {
|
|
result.Locality = []string{value.(string)}
|
|
}
|
|
if value := nameMap["province"]; value != nil {
|
|
result.Province = []string{value.(string)}
|
|
}
|
|
if value := nameMap["country"]; value != nil {
|
|
result.Country = []string{value.(string)}
|
|
}
|
|
if value := nameMap["postal_code"]; value != nil {
|
|
result.PostalCode = []string{value.(string)}
|
|
}
|
|
if value := nameMap["serial_number"]; value != nil {
|
|
result.SerialNumber = value.(string)
|
|
}
|
|
|
|
return result, nil
|
|
}
|
|
|
|
var nameSchema *schema.Resource = &schema.Resource{
|
|
Schema: map[string]*schema.Schema{
|
|
"organization": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
"common_name": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
"organizational_unit": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
"street_address": &schema.Schema{
|
|
Type: schema.TypeList,
|
|
Optional: true,
|
|
Elem: &schema.Schema{
|
|
Type: schema.TypeString,
|
|
},
|
|
},
|
|
"locality": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
"province": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
"country": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
"postal_code": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
"serial_number": &schema.Schema{
|
|
Type: schema.TypeString,
|
|
Optional: true,
|
|
},
|
|
},
|
|
}
|