0465b85087
This patch adds an initial version of the Dogtag plugin that implements the decrypt(), encrypt() and generate() functions. In this version, we will create and initialize an NSS database on the server to do crypto operations within the Dogtag DRM python client. This allows us to decrypt() and encrypt() secrets without passing in wrapping keys. When the barbican-client and the Barbican server API have been changed to pass through the wrapping keys, this plugin will need to enhanced to make the relevant DRM client calls. This plugin has been tested by running the barbican server within a virtual environment. There are several steps needed to get things configured, which are detailed in the blueprint. Added unit tests. These unit tests will be skipped if the dogtag dependencies are not present to import. Change-Id: Ib53bf3df5a65af7ac602ec7f7895e9c723c36c06 Implements: blueprint dogtag-plugin
79 lines
2.1 KiB
INI
79 lines
2.1 KiB
INI
[metadata]
|
|
name = barbican
|
|
version = 2014.1
|
|
description = Service for storing sensitive client information for OpenStack
|
|
description-file =
|
|
README.md
|
|
author = OpenStack
|
|
author-email = openstack-dev@lists.openstack.org
|
|
home-page = http://www.openstack.org/
|
|
classifier =
|
|
Environment :: OpenStack
|
|
Intended Audience :: Information Technology
|
|
Intended Audience :: System Administrators
|
|
License :: OSI Approved :: Apache Software License
|
|
Operating System :: POSIX :: Linux
|
|
Programming Language :: Python
|
|
Programming Language :: Python :: 2
|
|
Programming Language :: Python :: 2.7
|
|
Programming Language :: Python :: 2.6
|
|
|
|
[files]
|
|
packages =
|
|
barbican
|
|
scripts =
|
|
bin/barbican.sh
|
|
bin/barbican-worker.py
|
|
|
|
[entry_points]
|
|
barbican.crypto.plugin =
|
|
p11_crypto = barbican.crypto.p11_crypto:P11CryptoPlugin
|
|
simple_crypto = barbican.crypto.plugin:SimpleCryptoPlugin
|
|
dogtag_crypto = barbican.crypto.dogtag_crypto:DogtagCryptoPlugin
|
|
barbican.test.crypto.plugin =
|
|
test_crypto = barbican.tests.crypto.test_plugin:TestCryptoPlugin
|
|
|
|
[build_sphinx]
|
|
all_files = 1
|
|
build-dir = doc/build
|
|
source-dir = doc/source
|
|
|
|
[egg_info]
|
|
tag_build =
|
|
tag_date = 0
|
|
tag_svn_revision = 0
|
|
|
|
# TBD: Use this for OpenStack
|
|
#[compile_catalog]
|
|
#directory = barbican/locale
|
|
#domain = barbican
|
|
#
|
|
#[update_catalog]
|
|
#domain = barbican
|
|
#output_dir = barbican/locale
|
|
#input_file = barbican/locale/barbican.pot
|
|
#
|
|
#[extract_messages]
|
|
#keywords = _ gettext ngettext l_ lazy_gettext
|
|
#mapping_file = babel.cfg
|
|
#output_file = barbican/locale/barbican.pot
|
|
|
|
# TBD: OpenStack stuff...
|
|
# NOTE(jkoelker) To run the test suite under nose install the following
|
|
# coverage http://pypi.python.org/pypi/coverage
|
|
# tissue http://pypi.python.org/pypi/tissue (pep8 checker)
|
|
# openstack-nose https://github.com/jkoelker/openstack-nose
|
|
#verbosity=2
|
|
#detailed-errors=1
|
|
#with-openstack=1
|
|
#openstack-red=0.05
|
|
#openstack-yellow=0.025
|
|
#openstack-show-elapsed=1
|
|
#openstack-color=1
|
|
|
|
#[install]
|
|
#install-lib=/usr/local/bin/vbarbican/lib/python2.7/site-packages/
|
|
|
|
[wheel]
|
|
universal = 1
|