YunoHost/yunohost
1
0
Fork 0
mirror of https://github.com/YunoHost/yunohost.git synced 2024-09-03 20:06:10 +02:00
Code Issues Projects Releases Packages Wiki Activity

Display a warning message when letsencrypt is installed, suggesting commands to migrate

Browse source
This commit is contained in:
Alexandre Aubin 2016-11-08 12:09:02 -05:00
parent 90e63edcfe
commit 4ddc3aac36
2 changed files with 38 additions and 2 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
locales/en.json
View file

@ -251,5 +251,6 @@
"certmanager_no_A_dns_record" : "No DNS record of type A found for {domain:s}. You need to configure the DNS for your domain before installing a certificate !", "certmanager_no_A_dns_record" : "No DNS record of type A found for {domain:s}. You need to configure the DNS for your domain before installing a certificate !",
"certmanager_cannot_read_cert": "Something wrong happened when trying to open current certificate for domain {domain:s} (file : {file:s}), reason: {reason:s}", "certmanager_cannot_read_cert": "Something wrong happened when trying to open current certificate for domain {domain:s} (file : {file:s}), reason: {reason:s}",
"certmanager_cert_install_success" : "Successfully installed Let's Encrypt certificate for domain {domain:s} !", "certmanager_cert_install_success" : "Successfully installed Let's Encrypt certificate for domain {domain:s} !",
"certmanager_cert_renew_success" : "Successfully renewed Let's Encrypt certificate for domain {domain:s} !" "certmanager_cert_renew_success" : "Successfully renewed Let's Encrypt certificate for domain {domain:s} !",
"certmanager_old_letsencrypt_app_detected" : "Command aborted because the letsencrypt app is conflicting with the yunohost certificate management features."
} }

37
src/yunohost/certificate.py
View file

@ -40,7 +40,7 @@ from moulinette.utils.log import getActionLogger
import yunohost.domain import yunohost.domain
from yunohost.app import app_ssowatconf from yunohost.app import app_ssowatconf, app_list
from yunohost.service import _run_service_command from yunohost.service import _run_service_command
@ -78,6 +78,9 @@ def certificate_status(auth, domain_list, full=False):
full -- Display more info about the certificates full -- Display more info about the certificates
""" """
# Check if old letsencrypt_ynh is installed
_check_old_letsencrypt_app()
# If no domains given, consider all yunohost domains # If no domains given, consider all yunohost domains
if domain_list == []: if domain_list == []:
domain_list = yunohost.domain.domain_list(auth)['domains'] domain_list = yunohost.domain.domain_list(auth)['domains']
@ -107,6 +110,7 @@ def certificate_status(auth, domain_list, full=False):
def certificate_install(auth, domain_list, force=False, no_checks=False, self_signed=False): def certificate_install(auth, domain_list, force=False, no_checks=False, self_signed=False):
""" """
Install a Let's Encrypt certificate for given domains (all by default) Install a Let's Encrypt certificate for given domains (all by default)
@ -117,6 +121,11 @@ def certificate_install(auth, domain_list, force=False, no_checks=False, self_si
before attempting the install before attempting the install
self-signed -- Instal self-signed certificates instead of Let's Encrypt self-signed -- Instal self-signed certificates instead of Let's Encrypt
""" """
# Check if old letsencrypt_ynh is installed
_check_old_letsencrypt_app()
if self_signed: if self_signed:
certificate_install_selfsigned(domain_list, force) certificate_install_selfsigned(domain_list, force)
else: else:
@ -234,6 +243,9 @@ def certificate_renew(auth, domain_list, force=False, no_checks=False, email=Fal
email -- Emails root if some renewing failed email -- Emails root if some renewing failed
""" """
# Check if old letsencrypt_ynh is installed
_check_old_letsencrypt_app()
# If no domains given, consider all yunohost domains with Let's Encrypt # If no domains given, consider all yunohost domains with Let's Encrypt
# certificates # certificates
if domain_list == []: if domain_list == []:
@ -299,6 +311,29 @@ def certificate_renew(auth, domain_list, force=False, no_checks=False, email=Fal
# Back-end stuff # # Back-end stuff #
############################################################################### ###############################################################################
def _check_old_letsencrypt_app():
installedAppIds = [ app["id"] for app in yunohost.app.app_list(installed=True)["apps"] ]
if ("letsencrypt" not in installedAppIds) :
return
logger.warning(" ")
logger.warning("Yunohost detected that the 'letsencrypt' app is installed, ")
logger.warning("which conflits with the new certificate management features")
logger.warning("directly integrated in Yunohost. If you wish to use these ")
logger.warning("new features, please run the following commands to migrate ")
logger.warning("your installation :")
logger.warning(" ")
logger.warning(" yunohost app remove letsencrypt")
logger.warning(" yunohost domain cert-install")
logger.warning(" ")
logger.warning("N.B. : this will attempt to re-install certificates for ")
logger.warning("all domains with a Let's Encrypt certificate or self-signed")
logger.warning("certificate.")
logger.warning(" ")
raise MoulinetteError(errno.EINVAL, m18n.n('certmanager_old_letsencrypt_app_detected'))
def _install_cron(): def _install_cron():
cron_job_file = "/etc/cron.weekly/yunohost-certificate-renew" cron_job_file = "/etc/cron.weekly/yunohost-certificate-renew"