certificate#

Exec module for TLS certificates.

async idem_tls.exec.tls.certificate.get(hub, ctx, url: str) → dict_tools.typing.Computed.typing.Dict[source]#

Get information about the TLS certificates securing a host.

Parameters:: url – The URL of the website to get the certificates from.

Examples

Calling this exec module function from the cli

idem exec exec.tls.certificate.get url=https://oidc.eks.us-east-2.amazonaws.com/id/sample

Request Syntax:

[Idem-state-name]:
  exec.run:
    path: tls.certificate.get
    kwargs:
        url: 'string'

Sample response:

url: https://oidc.eks.us-east-2.amazonaws.com/id/sample
sha1_fingerprint: 9e99a48a9960b14926bb7f3b02e22da2b0ab7280
issuer:
  C: US
  O: Starfield Technologies, Inc.
  OU: Starfield Class 2 Certification Authority
not_after: 2034-06-28 17:39:16
not_before: 2009-09-02 00:00:00
subject:
  C: US
  ST: Arizona
  L: Scottsdale
  O: Starfield Technologies, Inc.
  CN: Starfield Services Root Certificate Authority - G2
version: 2
signature_algorithm: sha256WithRSAEncryption
serial_number: 12037640545166866303
resource_id: 12037640545166866303

Example Usage:

unmanaged-tls_certificate:
  exec.run:
    - path: tls.certificate.get
    - kwargs:
        url: https://oidc.eks.us-east-2.amazonaws.com/id/sample

arn:aws:iam::537227425989:www.sample-2.com:
  aws.iam.open_id_connect_provider.absent:
    - name: www.sample-2.com
    - url: https://www.sample-2.com/
    - client_id_list:
        - sts.amazonaws.com
    - thumbprint_list:
        - ${exec:unmanaged-tls_certificate:sha1_fingerprint}
    - tags:
        - Key: alpha.eksctl.io/eksctl-version
          Value: 0.77.0
        - Key: alpha.eksctl.io/cluster-name
          Value: pr-ssc-eks-poc

async idem_tls.exec.tls.certificate.list_(hub, ctx, url: str) → dict_tools.typing.Computed.typing.Dict[source]#

Get list of TLS certificate in chain securing a host.

List information about TLS certificates.

Parameters:: url – The URL of the website to get the certificates from.

Examples

Calling this exec module function from the cli

idem exec exec.tls.certificate.list url=https://oidc.eks.us-east-2.amazonaws.com/id/sample

Request Syntax:

[Idem-state-name]:
  exec.run:
    path: tls.certificate.list
    kwargs:
        url: 'string'

Example Usage:

unmanaged-tls_certificate:
  exec.run:
    - path: tls.certificate.list
    - kwargs:
        url: https://oidc.eks.us-east-2.amazonaws.com/id/sample