add-quality-check-script
#20
Open
jandd
wants to merge 6 commits from add-quality-check-script
into main
Loading…
Reference in New Issue
There is no content yet.
Delete Branch 'add-quality-check-script'
Deleting a branch is permanent. It CANNOT be undone. Continue?
This pull requests adds a script to check the quality of certificate signing requests and certificates recorded in the webdb database. The script uses read-only access to the database and filesystem.
Poetry is used to manage the required Python dependencies. Database access uses SQLAlchemy and the MariaDB connector/Python. The cryptography library is used to check the CSR and certificate data.
Script operation can be controlled using a set of environment variables.
DB_USER
DB_PASSWORD
DB_HOST
DB_PORT
DB_NAME
ROOT_CA_CERTIFICATE
SUB_CA_CERTIFICATE
DEBUG
DEBUG
is evaluated using the bool builtin function.I'm only able to understand Python a little bit, so I don't know special details about this language ...
... but as far as I'm able to read the code, it could be installed on webdb2 (for testing) AS LONG AS THERE IS A SECOND REVIEW by a person having more/detailed python-knowledge.
(After successful testing on webdb2 with production data it could be installed on webdb1, too).
Reviewers