ó Á£ô_c@sMdZddlZddlZddlmZddlZddlZddlm Z ddl m Z ddl m Z ddl mZddl mZdd lmZdd lmZdd lmZejeƒZejje jƒejje jƒd ejfd „ƒYƒƒZde fd„ƒYZ!d„Z"d„Z#d„Z$dS(s*Common code for DNS Authenticator Plugins.iÿÿÿÿN(tsleep(t challenges(terrors(t interfaces(t filesystem(tos(tops(tutil(tcommontDNSAuthenticatorcBsÈeZdZd„Zedd„ƒZd„Zd„Zd„Zd„Z e j d„ƒZ e j d „ƒZ e j d „ƒZd „Zdd „Zddd „Zed„ƒZedd„ƒZRS(s"Base class for DNS AuthenticatorscCs&tt|ƒj||ƒt|_dS(N(tsuperR t__init__tFalset_attempt_cleanup(tselftconfigtname((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR si cCs |dd|dtddƒdS(Nspropagation-secondstdefaultttypethelpsjThe number of seconds to wait for DNS to propagate before asking the ACME server to verify the DNS record.(tint(tclstaddtdefault_propagation_seconds((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pytadd_parser_arguments s cCs tjgS(N(RtDNS01(Rt unused_domain((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pytget_chall_pref(scCsdS(N((R((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pytprepare+scCs°|jƒt|_g}xd|D]\}|j}|j|ƒ}|j|jƒ}|j|||ƒ|j|j |jƒƒq Wt j d|j dƒƒt |j dƒƒ|S(Ns/Waiting %d seconds for DNS changes to propagatespropagation-seconds(t_setup_credentialstTrueR tdomaintvalidation_domain_namet validationt account_keyt_performtappendtresponsetloggertinfotconfR(Rtachallst responsestachallRR R!((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pytperform.s     cCs^|jrZxN|D]C}|j}|j|ƒ}|j|jƒ}|j|||ƒqWndS(N(R RR R!R"t_cleanup(RR)R+RR R!((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pytcleanupEs    cCs tƒ‚dS(s@ Establish credentials, prompting if necessary. N(tNotImplementedError(R((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyRNscCs tƒ‚dS(sX Performs a dns-01 challenge by creating a DNS TXT record. :param str domain: The domain being validated. :param str validation_domain_name: The validation record domain name. :param str validation: The validation record content. :raises errors.PluginError: If the challenge cannot be performed N(R/(RRtvalidation_nameR!((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR#Us cCs tƒ‚dS(sX Deletes the DNS TXT record which would have been created by `_perform_achall`. Fails gracefully if no such record exists. :param str domain: The domain being validated. :param str validation_domain_name: The validation record domain name. :param str validation: The validation record content. N(R/(RRR0R!((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR-as cCsG|j|ƒ}|sC|j|ƒ}t|j|j|ƒ|ƒndS(s Ensure that a configuration value is available. If necessary, prompts the user and stores the result. :param str key: The configuration key. :param str label: The user-friendly label for this piece of information. N(R(t_prompt_for_datatsetattrRtdest(Rtkeytlabeltconfigured_valuet new_value((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyt _configurens cCsb|j|ƒ}|s^|j||ƒ}t|j|j|ƒtjjtjj|ƒƒƒndS(s  Ensure that a configuration value is available for a path. If necessary, prompts the user and stores the result. :param str key: The configuration key. :param str label: The user-friendly label for this piece of information. N( R(t_prompt_for_fileR2RR3Rtpathtabspatht expanduser(RR4R5t validatorR6R7((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyt_configure_file~s csp‡‡‡fd†}ˆj|||ƒtˆj|ƒˆjƒ}ˆrY|jˆƒnˆrlˆ|ƒn|S(sð As `_configure_file`, but for a credential configuration file. If necessary, prompts the user and stores the result. Always stores absolute paths to avoid issues during renewal. :param str key: The configuration key. :param str label: The user-friendly label for this piece of information. :param dict required_variables: Map of variable which must be present to error to display. :param callable validator: A method which will be called to validate the `CredentialsConfiguration` resulting from the supplied input after it has been validated to contain the `required_variables`. Should throw a `~certbot.errors.PluginError` to indicate any issue. cs?t|ˆjƒ}ˆr(|jˆƒnˆr;ˆ|ƒndS(N(tCredentialsConfigurationR3trequire(tfilenamet configuration(trequired_variablesRR=(s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyt __validatorŸs (R>R?R(R3R@(RR4R5RCR=t_DNSAuthenticator__validatortcredentials_configuration((RCRR=s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyt_configure_credentialsŽs  cse‡fd†}tj|djˆƒdtƒ\}}|tjkrI|Stjdjˆƒƒ‚dS(sá Prompt the user for a piece of information. :param str label: The user-friendly label for this piece of information. :returns: The user's response (guaranteed non-empty). :rtype: str cs%|s!tjdjˆƒƒ‚ndS(NsPlease enter your {0}.(Rt PluginErrortformat(ti(R5(s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyRD½ssInput your {0}tforce_interactives{0} required to proceed.N(Rtvalidated_inputRIRt display_utiltOKRRH(R5REtcodeR%((R5s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR1³s csh‡‡fd†}tj|djˆƒdtƒ\}}|tjkrL|Stjdjˆƒƒ‚dS(sà Prompt the user for a path. :param str label: The user-friendly label for the file. :param callable validator: A method which will be called to validate the supplied input after it has been validated to be a non-empty path to an existing file. Should throw a `~certbot.errors.PluginError` to indicate any issue. :returns: The user's response (guaranteed to exist). :rtype: str csT|s!tjdjˆƒƒ‚ntjj|ƒ}t|ƒˆrPˆ|ƒndS(Ns&Please enter a valid path to your {0}.(RRHRIRR:R<t validate_file(RA(R5R=(s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyRD×s  sInput the path to your {0}RKs{0} required to proceed.N(Rtvalidated_directoryRIRRMRNRRH(R5R=REROR%((R5R=s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR9Ês  N(t__name__t __module__t__doc__R t classmethodRRRR,R.tabctabstractmethodRR#R-R8tNoneR>RGt staticmethodR1R9(((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR s"        %R?cBsAeZdZd„d„Zd„Zd„Zd„Zd„ZRS(s>Represents a user-supplied filed which stores API credentials.cCs|S(N((tx((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pytïscCstt|ƒytj|ƒ|_WnDtjk rf}tjd|dtƒtj dj |ƒƒ‚nX||_ dS(sö :param str filename: A path to the configuration file. :param callable mapper: A transformation to apply to configuration key names :raises errors.PluginError: If the file does not exist or is not a valid format. s+Error parsing credentials configuration: %stexc_infos,Error parsing credentials configuration: {0}N( tvalidate_file_permissionst configobjt ConfigObjtconfobjtConfigObjErrorR&tdebugRRRHRItmapper(RRARcte((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR ïs cCsÙg}x~|D]v}|j|ƒsK|jdj|j|ƒ||ƒƒq |j|ƒs |jdj|j|ƒ||ƒƒq q W|rÕtjdjt|ƒdkr±dnd|jj dj |ƒƒƒ‚ndS( sôEnsures that the supplied set of variables are all present in the file. :param dict required_variables: Map of variable which must be present to error to display. :raises errors.PluginError: If one or more are missing. s)Property "{0}" not found (should be {1}).s'Property "{0}" not set (should be {1}).s9Missing {0} in credentials configuration file {1}: * {2}itpropertyt propertiess * N( t_hasR$RIRct_getRRHtlenR`RAtjoin(RRCtmessagestvar((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR@ÿs   ! cCs |j|ƒS(sÂFind a configuration value for variable `var`, as transformed by `mapper`. :param str var: The variable to get. :returns: The value of the variable. :rtype: str (Rh(RRl((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR(scCs|j|ƒ|jkS(N(RcR`(RRl((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyRg"scCs|jj|j|ƒƒS(N(R`tgetRc(RRl((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyRh%s(RRRSRTR R@R(RgRh(((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR?ìs   cCs^tjj|ƒs-tjdj|ƒƒ‚ntjj|ƒrZtjdj|ƒƒ‚ndS(s&Ensure that the specified file exists.sFile not found: {0}sPath is a directory: {0}N(RR:texistsRRHRItisdir(RA((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyRP)scCs0t|ƒtj|ƒr,tjd|ƒndS(sHEnsure that the specified file exists and warn about unsafe permissions.s8Unsafe permissions on credentials configuration file: %sN(RPRthas_world_permissionsR&twarning(RA((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyR]3s cCsB|jdƒ}gtdt|ƒƒD]}dj||ƒ^q%S(sÂReturn a list of progressively less-specific domain names. One of these will probably be the domain name known to the DNS provider. :Example: >>> base_domain_name_guesses('foo.bar.baz.example.com') ['foo.bar.baz.example.com', 'bar.baz.example.com', 'baz.example.com', 'example.com', 'com'] :param str domain: The domain for which to return guesses. :returns: The a list of less specific domain names. :rtype: list t.i(tsplittrangeRiRj(Rt fragmentsRJ((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pytbase_domain_name_guesses<s(%RTRVtloggingttimeRR^tzope.interfacetzopetacmeRtcertbotRRtcertbot.compatRRtcertbot.displayRRRMtcertbot.pluginsRt getLoggerRRR&t interfacet implementertIAuthenticatortprovidertIPluginFactorytPluginR tobjectR?RPR]Rv(((s>/usr/lib/python2.7/site-packages/certbot/plugins/dns_common.pyts*    Ô=