Overview

This page describes KRA services used by IPA.

pki.crypto.CryptographyCryptoProvider

CryptographyCryptoProvider is used in kra.get_client():

crypto = cryptoutil.CryptographyCryptoProvider(
    transport_cert_nick="ra_agent",
    transport_cert=x509.load_certificate_from_file(paths.RA_AGENT_PEM))

pki.client.PKIConnection

PKIConnection is used in get_conn():

conn = PKIConnection(
    hostname=hostname,
    subsystem=subsystem,
    cert_paths=paths.IPA_CA_CRT)

PKIConnection is used in get_security_domain():

connection = PKIConnection(
    protocol='https',
    hostname=api.env.ca_host,
    port='8443',
    cert_paths=paths.IPA_CA_CRT)

PKIConnection is used in kra.get_client():

connection = PKIConnection(
   'https',
   self.kra_host,
   str(self.kra_port),
   'kra',
   cert_paths=paths.IPA_CA_CRT)

connection.set_authentication_cert(paths.RA_AGENT_PEM,
                                   paths.RA_AGENT_KEY)

pki.kra.KRAClient

PKI KRA Python API

pki.systemcert.SystemCertClient

SystemCertClient is used in vaultconfig_show.execute():

transport_cert = kra_client.system_certs.get_transport_cert()
config['transport_cert'] = transport_cert.binary

pki.account.AccountClient

AccountClient is used in:

kra_account = pki.account.AccountClient(kra_client.connection)
kra_account.login()
kra_account.logout()

KRA Services - dogtagpki/freeipa GitHub Wiki

Overview

pki.crypto.CryptographyCryptoProvider

pki.client.PKIConnection

pki.kra.KRAClient

pki.systemcert.SystemCertClient

pki.account.AccountClient

⚠️ GitHub.com Fallback ⚠️

KRA Services - dogtagpki/freeipa GitHub Wiki

Overview

pki.crypto.CryptographyCryptoProvider

pki.client.PKIConnection

pki.kra.KRAClient

pki.systemcert.SystemCertClient

pki.account.AccountClient

⚠️ **GitHub.com Fallback** ⚠️

⚠️ GitHub.com Fallback ⚠️