sushy.resources.certificateservice package

Submodules

sushy.resources.certificateservice.certificate module

class sushy.resources.certificateservice.certificate.Certificate(connector, path='', redfish_version=None, registries=None, reader=None, json_doc=None, root=None)

Bases: ResourceBase

certificate_string = <sushy.resources.base.Field object>

Certificate in the format defined by certificate_type

certificate_type = <sushy.resources.base.MappedField object>

The format of the certificate

certificate_usage_type = <sushy.resources.base.MappedField object>

The types or purposes for this certificate

delete()

Delete this certificate.

description = <sushy.resources.base.Field object>

Certificate description

fingerprint = <sushy.resources.base.Field object>

The fingerprint of the certificate

fingerprint_hash_algorithm = <sushy.resources.base.Field object>

The hash algorithm for the fingerprint of the certificate

identity = <sushy.resources.base.Field object>

The certificate identity string

issuer = <sushy.resources.certificateservice.certificate.Identifier object>

The issuer of the certificate

key_usage = <sushy.resources.base.MappedListField object>

The key usage extension, which defines the purpose of the public keys in this certificate

name = <sushy.resources.base.Field object>

The certificate name

serial_number = <sushy.resources.base.Field object>

The serial number of the certificate

signature_algorithm = <sushy.resources.base.Field object>

The algorithm used for creating the signature of the certificate

subject = <sushy.resources.certificateservice.certificate.Identifier object>

The subject of the certificate

uefi_signature_owner = <sushy.resources.base.Field object>

The UEFI signature owner for this certificate

valid_not_after = <sushy.resources.base.Field object>

The date when the certificate is no longer valid

valid_not_before = <sushy.resources.base.Field object>

The date when the certificate becomes valid

class sushy.resources.certificateservice.certificate.CertificateCollection(connector, path, redfish_version=None, registries=None, root=None)

Bases: MutableResourceCollectionBase

create_member(certificate_string, certificate_type)

Create a new member of this collection.

Parameters:
  • certificate_string – the contents of the new certificate.

  • certificate_type – the type of the new certificate, one of sushy.CertificateType.

class sushy.resources.certificateservice.certificate.Identifier(*args, **kwargs)

Bases: CompositeField

The identifier information about a certificate.

city = <sushy.resources.base.Field object>
common_name = <sushy.resources.base.Field object>
country = <sushy.resources.base.Field object>
email = <sushy.resources.base.Field object>
organization = <sushy.resources.base.Field object>
organizational_unit = <sushy.resources.base.Field object>
state = <sushy.resources.base.Field object>

sushy.resources.certificateservice.certificateservice module

class sushy.resources.certificateservice.certificateservice.ActionsField(*args, **kwargs)

Bases: CompositeField

generate_csr = <sushy.resources.common.ActionField object>
replace_certificate = <sushy.resources.common.ActionField object>
class sushy.resources.certificateservice.certificateservice.CertificateLocations(connector, path, redfish_version=None, registries=None, root=None)

Bases: ResourceLinksBase

property members_identities

A sequence with members identities

name = <sushy.resources.base.Field object>

The name of the collection

class sushy.resources.certificateservice.certificateservice.CertificateService(connector, path='', redfish_version=None, registries=None, reader=None, json_doc=None, root=None)

Bases: ResourceBase

property certificate_locations

Property to reference certificate locations instance

identity = <sushy.resources.base.Field object>

The certificate service identity

name = <sushy.resources.base.Field object>

The certificate service name

replace_certificate(certificate_uri, certificate_string, certificate_type)

Replace an existing certificate in the service.

Parameters:
  • certificate_uri – URI of an existing certificate.

  • certificate_string – the contents of the new certificate.

  • certificate_type – the type of the new certificate, one of sushy.CertificateType.

sushy.resources.certificateservice.constants module

class sushy.resources.certificateservice.constants.CertificateType(value)

Bases: Enum

An enumeration.

PEM = 'PEM'

A Privacy Enhanced Mail (PEM)-encoded single certificate.

PEM_CHAIN = 'PEMchain'

A Privacy Enhanced Mail (PEM)-encoded certificate chain.

PKCS7 = 'PKCS7'

A Privacy Enhanced Mail (PEM)-encoded PKCS7 certificate.

class sushy.resources.certificateservice.constants.CertificateUsageType(value)

Bases: Enum

An enumeration.

BIOS = 'BIOS'

This certificate is a BIOS certificate like those associated with UEFI.

DEVICE = 'Device'

This certificate is a device type certificate like those associated with SPDM and other standards.

PLATFORM = 'Platform'

This certificate is a platform type certificate like those associated with SPDM and other standards.

SSH = 'SSH'

This certificate is used for SSH.

USER = 'User'

This certificate is a user certificate like those associated with a manager account.

WEB = 'Web'

This certificate is a web or HTTPS certificate like those used for event destinations.

class sushy.resources.certificateservice.constants.KeyUsage(value)

Bases: Enum

An enumeration.

CLIENT_AUTHENTICATION = 'ClientAuthentication'

TLS WWW client authentication.

CODE_SIGNING = 'CodeSigning'

Signs downloadable executable code.

CRL_SIGNING = 'CRLSigning'

Verifies signatures on certificate revocation lists (CRLs).

DATA_ENCIPHERMENT = 'DataEncipherment'

Directly enciphers raw user data without an intermediate symmetric cipher.

DECIPHER_ONLY = 'DecipherOnly'

Deciphers data while performing a key agreement.

DIGITAL_SIGNATURE = 'DigitalSignature'

Verifies digital signatures, other than signatures on certificates and CRLs.

EMAIL_PROTECTION = 'EmailProtection'

Email protection.

ENCIPHER_ONLY = 'EncipherOnly'

Enciphers data while performing a key agreement.

KEY_AGREEMENT = 'KeyAgreement'

Key agreement.

KEY_CERT_SIGN = 'KeyCertSign'

Verifies signatures on public key certificates.

KEY_ENCIPHERMENT = 'KeyEncipherment'

Enciphers private or secret keys.

NON_REPUDIATION = 'NonRepudiation'

Verifies digital signatures, other than signatures on certificates and CRLs, and provides a non-repudiation service that protects against the signing entity falsely denying some action.

OCSP_SIGNING = 'OCSPSigning'

Signs OCSP responses.

SERVER_AUTHENTICATION = 'ServerAuthentication'

TLS WWW server authentication.

TIMESTAMPING = 'Timestamping'

Binds the hash of an object to a time.

Module contents