blob: 7e4b49aa2ea46d1a781f3ae5cd9509cd110fce4a (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
|
#
# Model for certificates stored in CouchDB.
#
# This file must be loaded after Config has been loaded.
#
module LeapCA
class Cert < CouchRest::Model::Base
# No config yet. use_database LeapCA::Config.db_name
use_database 'client_certificates'
timestamps!
property :key, String # the client private RSA key
property :cert, String # the client x509 certificate, signed by the CA
property :valid_until, Time # expiration time of the client certificate
property :random, Float, :accessible => false # used to help pick a random cert by the webapp
before_validation :set_random, :on => :create
validates :key, :presence => true
validates :cert, :presence => true
validates :random, :presence => true, :numericality => {:greater_than_or_equal_to => 0, :less_than => 1}
design do
view :by_random
end
def set_random
self.random = rand
end
class << self
def sample
self.by_random.startkey(rand).first || self.by_random.first
end
def pick_from_pool
cert = self.sample
raise RECORD_NOT_FOUND unless cert
cert.destroy
return cert
rescue RESOURCE_NOT_FOUND
retry if self.by_random.count > 0
raise RECORD_NOT_FOUND
end
def valid_attributes_hash
{:key => "ABCD", :cert => "A123"}
end
end
end
end
|