Skip to content

[keyvault] add parse id feature for certs #13321

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Closed
iscai-msft wants to merge 11 commits into from
Closed

[keyvault] add parse id feature for certs #13321

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
b5de5d7
renamed existing id parser to be more consistent with new class
iscai-msft Aug 25, 2020
6c9f3e0
add parse_certificate_id
iscai-msft Aug 25, 2020
ead06e6
add tests
iscai-msft Aug 25, 2020
1a5c23b
remove print override, validate properties instead
iscai-msft Aug 26, 2020
05be0b7
Merge branch 'master' of https://github.com/Azure/azure-sdk-for-pytho…
iscai-msft Sep 1, 2020
af05671
remove exposed collection property
iscai-msft Sep 1, 2020
00a32cb
original_id -> source_id
iscai-msft Sep 1, 2020
5f1d2f6
parse_certificate_id -> parse_key_vault_certificate_id
iscai-msft Sep 1, 2020
6bc362f
remove etc from changelog comment
iscai-msft Sep 1, 2020
057ee2d
make code snippet include get of certificate
iscai-msft Sep 3, 2020
3de59c3
Merge branch 'master' of https://github.com/Azure/azure-sdk-for-pytho…
iscai-msft Sep 3, 2020
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
4 changes: 4 additions & 0 deletions sdk/keyvault/azure-keyvault-certificates/CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,10 @@
- Correct typing for paging methods
- Fixed incompatibility issues with API version 2016-10-01

### Added
- Added method `parse_key_vault_certificate_id` that parses out a full ID returned by key vault, so users
can easily access the certificate's `name`, `vault_url`, and `version`.


## 4.2.0 (2020-08-11)
### Fixed
Expand Down
6 changes: 5 additions & 1 deletion sdk/keyvault/azure-keyvault-certificates/azure/keyvault/certificates/__init__.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,9 @@
LifetimeAction,
KeyVaultCertificate
)
from ._parse_id import parse_key_vault_certificate_id
from ._shared.client_base import ApiVersion
from ._shared import ParsedId

__all__ = [
"ApiVersion",
Expand All @@ -47,7 +49,9 @@
"CertificateContentType",
"WellKnownIssuerNames",
"CertificateIssuer",
"IssuerProperties"
"IssuerProperties",
"parse_key_vault_certificate_id",
"ParsedId",
]

from ._version import VERSION
Expand Down
13 changes: 7 additions & 6 deletions sdk/keyvault/azure-keyvault-certificates/azure/keyvault/certificates/_models.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
# ------------------------------------

# pylint: disable=too-many-lines,too-many-public-methods
from ._shared import parse_vault_id
from ._shared import parse_key_vault_identifier
from ._generated.v7_1 import models
from ._enums import(
CertificatePolicyAction,
Expand Down Expand Up @@ -147,7 +147,7 @@ def __init__(self, **kwargs):
# type: (**Any) -> None
self._attributes = kwargs.pop("attributes", None)
self._id = kwargs.pop("cert_id", None)
self._vault_id = parse_vault_id(self._id)
self._vault_id = parse_key_vault_identifier(self._id)
self._x509_thumbprint = kwargs.pop("x509_thumbprint", None)
self._tags = kwargs.pop("tags", None)

Expand Down Expand Up @@ -430,7 +430,7 @@ def __init__(
):
# type: (...) -> None
self._id = cert_operation_id
self._vault_id = parse_vault_id(cert_operation_id)
self._vault_id = parse_key_vault_identifier(cert_operation_id)
self._issuer_name = issuer_name
self._certificate_type = certificate_type
self._certificate_transparency = certificate_transparency
Expand Down Expand Up @@ -1058,7 +1058,7 @@ class IssuerProperties(object):
def __init__(self, provider=None, **kwargs):
# type: (Optional[str], **Any) -> None
self._id = kwargs.pop("issuer_id", None)
self._vault_id = parse_vault_id(self._id)
self._vault_id = parse_key_vault_identifier(self._id)
self._provider = provider

def __repr__(self):
Expand Down Expand Up @@ -1120,7 +1120,7 @@ def __init__(
self._organization_id = organization_id
self._admin_contacts = admin_contacts
self._id = kwargs.pop("issuer_id", None)
self._vault_id = parse_vault_id(self._id)
self._vault_id = parse_key_vault_identifier(self._id)

def __repr__(self):
# type () -> str
Expand Down Expand Up @@ -1158,7 +1158,8 @@ def id(self):
def name(self):
# type: () -> str
# Issuer name is listed under version under vault_id
# This is because the id we pass to parse_vault_id has an extra segment, so where most cases the version of
# This is because the id we pass to parse_key_vault_identifier has an extra segment,
# so where most cases the version of
# The general pattern is certificates/name/version, but here we have certificates/issuers/name/version
# Issuers are not versioned.
""":rtype: str"""
Expand Down
33 changes: 33 additions & 0 deletions sdk/keyvault/azure-keyvault-certificates/azure/keyvault/certificates/_parse_id.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,33 @@
# ------------------------------------
# Copyright (c) Microsoft Corporation.
# Licensed under the MIT License.
# ------------------------------------

from ._shared import parse_key_vault_identifier, ParsedId


def parse_key_vault_certificate_id(source_id):
# type: (str) -> ParsedId
"""Parses a full certificate's ID into a class.

:param str source_id: the full original identifier of a certificate
:returns: Returns a parsed certificate id
:rtype: ~azure.keyvault.certificates.ParsedId
:raises: ValueError

Example:
.. literalinclude:: ../tests/test_parse_id.py
:start-after: [START parse_key_vault_certificate_id]
:end-before: [END parse_key_vault_certificate_id]
:language: python
:caption: Parse a certificate's ID
:dedent: 8
"""
parsed_id = parse_key_vault_identifier(source_id)

return ParsedId(
name=parsed_id.name,
source_id=parsed_id.source_id,
vault_url=parsed_id.vault_url,
version=parsed_id.version
)
38 changes: 28 additions & 10 deletions sdk/keyvault/azure-keyvault-certificates/azure/keyvault/certificates/_shared/__init__.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -2,8 +2,6 @@
# Copyright (c) Microsoft Corporation.
# Licensed under the MIT License.
# ------------------------------------
from collections import namedtuple

try:
import urllib.parse as parse
except ImportError:
Expand All @@ -24,25 +22,45 @@
"KeyVaultClientBase",
]

_VaultId = namedtuple("VaultId", ["vault_url", "collection", "name", "version"])
class ParsedId():
"""Represents a key vault identifier and its parsed contents.

:param str source_id: The originally received complete identifier
:param str vault_url: The vault URL
:param str name: The name extracted from the id
:param str version: The version extracted from the id
"""

def __init__(
self,
source_id, # type: str
vault_url, # type: str
name, # type: str
version=None # type: Optional[str]
):
self.source_id = source_id
self.vault_url = vault_url
self.name = name
self.version = version


def parse_vault_id(url):
def parse_key_vault_identifier(source_id):
# type: (str) -> ParsedId
try:
parsed_uri = parse.urlparse(url)
parsed_uri = parse.urlparse(source_id)
except Exception: # pylint: disable=broad-except
raise ValueError("'{}' is not not a valid url".format(url))
raise ValueError("'{}' is not not a valid ID".format(source_id))
if not (parsed_uri.scheme and parsed_uri.hostname):
raise ValueError("'{}' is not not a valid url".format(url))
raise ValueError("'{}' is not not a valid ID".format(source_id))

path = list(filter(None, parsed_uri.path.split("/")))

if len(path) < 2 or len(path) > 3:
raise ValueError("'{}' is not not a valid vault url".format(url))
raise ValueError("'{}' is not not a valid vault ID".format(source_id))

return _VaultId(
return ParsedId(
source_id=source_id,
vault_url="{}://{}".format(parsed_uri.scheme, parsed_uri.hostname),
collection=path[0],
name=path[1],
version=path[2] if len(path) == 3 else None,
)
Expand Down
Loading