django_ca.views
- HTTP endpoints¶
Views for the django-ca app.
See also
- class django_ca.views.GenericCAIssuersView(**kwargs)[source]¶
Generic view that returns a CA public key in DER format.
This view serves the URL named in the
issuers
key in theAuthorityInformationAccess
extension.
- class django_ca.views.GenericOCSPView(**kwargs)[source]¶
View providing auto-configured OCSP functionality.
This view assumes that
ocsp/$ca_serial.(key|pem)
point to the private/public key of a responder certificate as created bygenerate_ocsp_keys
. Theserial
URL keyword argument must be the serial for this CA.
- class django_ca.views.OCSPView(**kwargs)[source]¶
View to provide an OCSP responder.
- ca_ocsp = False¶
If set to
True
, validate child CAs instead.
- expires = 600¶
Time in seconds that the responses remain valid. The default is 600 seconds or ten minutes.
- fail(status: OCSPResponseStatus = OCSPResponseStatus.INTERNAL_ERROR) HttpResponse [source]¶
Generic method to return a failure response.
- get_ca() CertificateAuthority [source]¶
Get the certificate authority for the request.
- get_cert(ca: CertificateAuthority, serial: str) Certificate | CertificateAuthority [source]¶
Get the certificate that was requested in the OCSP request.
- get_responder_cert() Certificate [source]¶
Get the public key used to sign OCSP responses.
- get_responder_key() Ed25519PrivateKey | Ed448PrivateKey | RSAPrivateKey | DSAPrivateKey | EllipticCurvePrivateKey [source]¶
Get the private key used to sign OCSP responses.
- get_responder_key_data() bytes [source]¶
Read the file containing the private key used to sign OCSP responses.
- http_response(data: bytes, status: int = HTTPStatus.OK) HttpResponse [source]¶
Get an HTTP OCSP response with given status and data.
- responder_cert: Certificate | str = ''¶
Public key of the responder.
This may either be:
A relative path used by CA_FILE_STORAGE
A serial of a certificate as stored in the database
The PEM of the certificate as string
A loaded
Certificate
- responder_key: str = ''¶
Private key used for signing OCSP responses. A relative path used by CA_FILE_STORAGE.