How to use the acme.messages.NewRegistration function in acme
To help you get started, we’ve selected a few acme examples, based on popular ways it is used in public projects.
Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
letsencrypt / boulder / test / chisel.py View on Github 
def make_client(email=None):
"""Build an acme.Client and register a new account with a random key."""
key = josepy.JWKRSA(key=rsa.generate_private_key(65537, 2048, default_backend()))
net = acme_client.ClientNetwork(key, user_agent="Boulder integration tester")
client = acme_client.Client(DIRECTORY, key=key, net=net)
account = client.register(messages.NewRegistration.from_data(email=email))
client.agree_to_tos(account)
client.account = account
return clientdef register(self, new_reg=None):
self._registered = True
if new_reg is None:
new_reg = messages.NewRegistration()
self.regr = messages.RegistrationResource(
body=messages.Registration(
contact=new_reg.contact,
agreement=new_reg.agreement))
return succeed(self.regr)def register(ctx, email, phone, auto_accept_tos, quiet=False):
'''
Register a new account key or update an existing registration.
'''
logger.info('starting registration for email:"%s", phone:"%s"', email, phone)
try:
regr = ctx.obj.acme.register(messages.NewRegistration.from_data(email=email, phone=phone))
except errors.ConflictError as e:
logger.info('found existing registration for key; fetching')
response = ctx.obj.acme.net.post(e.location, messages.UpdateRegistration())
regr = client.Client._regr_from_response(response, uri=e.location)
if regr.body.agreement != regr.terms_of_service:
if not auto_accept_tos and not click.confirm('Accept Terms of Service? (%s)' % regr.terms_of_service,
default=None):
ctx.fail('Must accept ToS to continue')
elif auto_accept_tos:
logger.info('automatically accepting ToS')
ctx.obj.acme.agree_to_tos(regr)
if (email and (email,) != regr.body.emails) or (phone and (phone,) != regr.body.phones):
logger.info('updating contact information')
upd_reg = messages.UpdateRegistration().from_data(email=email, phone=phone)account_public_key = acme.client.net.key.public_key()
eab = messages.ExternalAccountBinding.from_data(account_public_key=account_public_key,
kid=config.eab_kid,
hmac_key=config.eab_hmac_key,
directory=acme.client.directory)
else:
eab = None
if acme.external_account_required():
if not eab_credentials_supplied:
msg = ("Server requires external account binding."
" Please use --eab-kid and --eab-hmac-key.")
raise errors.Error(msg)
try:
newreg = messages.NewRegistration.from_data(email=config.email,
external_account_binding=eab)
return acme.new_account_and_tos(newreg, tos_cb)
except messages.Error as e:
if e.code == "invalidEmail" or e.code == "invalidContact":
if config.noninteractive_mode:
msg = ("The ACME server believes %s is an invalid email address. "
"Please ensure it is a valid email and attempt "
"registration again." % config.email)
raise errors.Error(msg)
config.email = display_ops.get_email(invalid=True)
return perform_registration(acme, config, tos_cb)
raisedef register(self, new_reg=None):
"""Register.
:param .NewRegistration new_reg:
:returns: Registration Resource.
:rtype: `.RegistrationResource`
:raises .UnexpectedUpdate:
"""
new_reg = messages.NewRegistration() if new_reg is None else new_reg
assert isinstance(new_reg, messages.NewRegistration)
response = self.net.post(self.directory[new_reg], new_reg)
# TODO: handle errors
assert response.status_code == http_client.CREATED
# "Instance of 'Field' has no key/contact member" bug:
# pylint: disable=no-member
regr = self._regr_from_response(response)
if (regr.body.key != self.key.public_key() or
regr.body.contact != new_reg.contact):
raise errors.UnexpectedUpdate(regr)
return regrdef register(self, new_reg=None):
"""Register.
:param .NewRegistration new_reg:
:returns: Registration Resource.
:rtype: `.RegistrationResource`
:raises .UnexpectedUpdate:
"""
new_reg = messages.NewRegistration() if new_reg is None else new_reg
assert isinstance(new_reg, messages.NewRegistration)
response = self.net.post(self.directory[new_reg], new_reg)
# TODO: handle errors
assert response.status_code == http_client.CREATED
# "Instance of 'Field' has no key/contact member" bug:
# pylint: disable=no-member
regr = self._regr_from_response(response)
if (regr.body.key != self.key.public_key() or
regr.body.contact != new_reg.contact):
raise errors.UnexpectedUpdate(regr)
return regr)
net = ClientNetwork(key, account=regr)
client = BackwardsCompatibleClientV2(net, key, directory_url)
return client, {}
else:
# Create an account for each certificate issuance
key = jose.JWKRSA(key=generate_private_key("RSA2048"))
current_app.logger.debug(
"Connecting with directory at {0}".format(directory_url)
)
net = ClientNetwork(key, account=None, timeout=3600)
client = BackwardsCompatibleClientV2(net, key, directory_url)
registration = client.new_account_and_tos(
messages.NewRegistration.from_data(email=email)
)
current_app.logger.debug("Connected: {0}".format(registration.uri))
return client, registrationdef register(self, new_reg=None):
"""Register.
:param .NewRegistration new_reg:
:returns: Registration Resource.
:rtype: `.RegistrationResource`
:raises .UnexpectedUpdate:
"""
new_reg = messages.NewRegistration() if new_reg is None else new_reg
assert isinstance(new_reg, messages.NewRegistration)
response = self.net.post(self.directory[new_reg], new_reg)
# TODO: handle errors
assert response.status_code == http_client.CREATED
# "Instance of 'Field' has no key/contact member" bug:
# pylint: disable=no-member
regr = self._regr_from_response(response)
if (regr.body.key != self.key.public_key() or
regr.body.contact != new_reg.contact):
raise errors.UnexpectedUpdate(regr)
return regrprivate_key = rsa.generate_private_key(
public_exponent = 65537,
key_size = settings.LETSENCRYPT_ACCT_KEY_BITS,
backend = default_backend()
)
key = jose.JWKRSA(key=private_key)
# Prepare ACME client connection with account private key
net = client.ClientNetwork(key)
directory = messages.Directory.from_json(
net.get(settings.LETSENCRYPT_ACME_SERVER).json()
)
client_acme = client.ClientV2(directory, net=net)
# Generate a new account and store account information locally
email = getattr(settings, 'KUMQUAT_EMAIL', None)
regr = client_acme.new_account(
messages.NewRegistration.from_data(
email = email,
terms_of_service_agreed = True
)
)
# Store private key as json format
with open(key_file, 'w') as f:
f.write(key.json_dumps())
# Store regr information as json format
with open(reg_file, 'w') as f:
f.write(regr.json_dumps())
return key, regrdef perform_registration(acme, config):
"""
Actually register new account, trying repeatedly if there are email
problems
:param .IConfig config: Client configuration.
:param acme.client.Client client: ACME client object.
:returns: Registration Resource.
:rtype: `acme.messages.RegistrationResource`
:raises .UnexpectedUpdate:
"""
try:
return acme.register(messages.NewRegistration.from_data(email=config.email))
except messages.Error as e:
if e.code == "invalidEmail" or e.code == "invalidContact":
if config.noninteractive_mode:
msg = ("The ACME server believes %s is an invalid email address. "
"Please ensure it is a valid email and attempt "
"registration again." % config.email)
raise errors.Error(msg)
else:
config.email = display_ops.get_email(invalid=True)
return perform_registration(acme, config)
else:
raise
Popular acme functions
- acme.challenges
- acme.challenges.HTTP01
- acme.client
- acme.client.Client
- acme.client.ClientNetwork
- acme.client.ClientV2
- acme.crypto_util
- acme.crypto_util.gen_ss_cert
- acme.errors
- acme.errors.ClientError
- acme.errors.UnexpectedUpdate
- acme.jose
- acme.jose.ComparableX509
- acme.jose.errors
- acme.jose.errors.DeserializationError
- acme.jose.Field
- acme.messages
- acme.messages.NewRegistration
- acme.messages.NewRegistration.from_data
- acme.messages.RegistrationResource