from __future__ import annotations from typing import TYPE_CHECKING, Any, NamedTuple from ..actions import ( ActionSort, ActionsPageResult, ActionStatus, BoundAction, ResourceActionsClient, ) from ..actions.client import ResourceClientBaseActionsMixin from ..core import BoundModelBase, Meta, ResourceClientBase from .domain import ( Certificate, CreateManagedCertificateResponse, ManagedCertificateError, ManagedCertificateStatus, ) if TYPE_CHECKING: from .._client import Client __all__ = [ "BoundCertificate", "CertificatesPageResult", "CertificatesClient", ] class BoundCertificate(BoundModelBase[Certificate], Certificate): _client: CertificatesClient model = Certificate def __init__( self, client: CertificatesClient, data: dict[str, Any], complete: bool = True, ): status = data.get("status") if status is not None: error_data = status.get("error") error = None if error_data: error = ManagedCertificateError( code=error_data["code"], message=error_data["message"] ) data["status"] = ManagedCertificateStatus( issuance=status["issuance"], renewal=status["renewal"], error=error ) super().__init__(client, data, complete) def get_actions_list( self, status: list[ActionStatus] | None = None, sort: list[ActionSort] | None = None, page: int | None = None, per_page: int | None = None, ) -> ActionsPageResult: """ Returns a paginated list of Actions for a Certificate. :param status: Filter the Actions by status. :param sort: Sort Actions by field and direction. :param page: Page number to get. :param per_page: Maximum number of Actions returned per page. """ return self._client.get_actions_list( self, status=status, sort=sort, page=page, per_page=per_page, ) def get_actions( self, status: list[ActionStatus] | None = None, sort: list[ActionSort] | None = None, ) -> list[BoundAction]: """ Returns all Actions for a Certificate. :param status: Filter the Actions by status. :param sort: Sort Actions by field and direction. """ return self._client.get_actions( self, status=status, sort=sort, ) def update( self, name: str | None = None, labels: dict[str, str] | None = None, ) -> BoundCertificate: """Updates an certificate. You can update an certificate name and the certificate labels. :param name: str (optional) New name to set :param labels: Dict[str, str] (optional) User-defined labels (key-value pairs) :return: :class:`BoundCertificate ` """ return self._client.update( self, name=name, labels=labels, ) def delete(self) -> bool: """Deletes a certificate. :return: boolean """ return self._client.delete(self) def retry_issuance(self) -> BoundAction: """Retry a failed Certificate issuance or renewal. :return: BoundAction """ return self._client.retry_issuance(self) class CertificatesPageResult(NamedTuple): certificates: list[BoundCertificate] meta: Meta class CertificatesClient( ResourceClientBaseActionsMixin, ResourceClientBase, ): _base_url = "/certificates" actions: ResourceActionsClient """Certificates scoped actions client :type: :class:`ResourceActionsClient ` """ def __init__(self, client: Client): super().__init__(client) self.actions = ResourceActionsClient(client, self._base_url) def get_by_id(self, id: int) -> BoundCertificate: """Get a specific certificate by its ID. :param id: int :return: :class:`BoundCertificate ` """ response = self._client.request(url=f"{self._base_url}/{id}", method="GET") return BoundCertificate(self, response["certificate"]) def get_list( self, name: str | None = None, label_selector: str | None = None, page: int | None = None, per_page: int | None = None, ) -> CertificatesPageResult: """Get a list of certificates :param name: str (optional) Can be used to filter certificates by their name. :param label_selector: str (optional) Can be used to filter certificates by labels. The response will only contain certificates matching the label selector. :param page: int (optional) Specifies the page to fetch :param per_page: int (optional) Specifies how many results are returned by page :return: (List[:class:`BoundCertificate `], :class:`Meta `) """ params: dict[str, Any] = {} if name is not None: params["name"] = name if label_selector is not None: params["label_selector"] = label_selector if page is not None: params["page"] = page if per_page is not None: params["per_page"] = per_page response = self._client.request(url=self._base_url, method="GET", params=params) certificates = [ BoundCertificate(self, certificate_data) for certificate_data in response["certificates"] ] return CertificatesPageResult(certificates, Meta.parse_meta(response)) def get_all( self, name: str | None = None, label_selector: str | None = None, ) -> list[BoundCertificate]: """Get all certificates :param name: str (optional) Can be used to filter certificates by their name. :param label_selector: str (optional) Can be used to filter certificates by labels. The response will only contain certificates matching the label selector. :return: List[:class:`BoundCertificate `] """ return self._iter_pages(self.get_list, name=name, label_selector=label_selector) def get_by_name(self, name: str) -> BoundCertificate | None: """Get certificate by name :param name: str Used to get certificate by name. :return: :class:`BoundCertificate ` """ return self._get_first_by(self.get_list, name=name) def create( self, name: str, certificate: str, private_key: str, labels: dict[str, str] | None = None, ) -> BoundCertificate: """Creates a new Certificate with the given name, certificate and private_key. This methods allows only creating custom uploaded certificates. If you want to create a managed certificate use :func:`~hcloud.certificates.client.CertificatesClient.create_managed` :param name: str :param certificate: str Certificate and chain in PEM format, in order so that each record directly certifies the one preceding :param private_key: str Certificate key in PEM format :param labels: Dict[str, str] (optional) User-defined labels (key-value pairs) :return: :class:`BoundCertificate ` """ data: dict[str, Any] = { "name": name, "certificate": certificate, "private_key": private_key, "type": Certificate.TYPE_UPLOADED, } if labels is not None: data["labels"] = labels response = self._client.request(url=self._base_url, method="POST", json=data) return BoundCertificate(self, response["certificate"]) def create_managed( self, name: str, domain_names: list[str], labels: dict[str, str] | None = None, ) -> CreateManagedCertificateResponse: """Creates a new managed Certificate with the given name and domain names. This methods allows only creating managed certificates for domains that are using the Hetzner DNS service. If you want to create a custom uploaded certificate use :func:`~hcloud.certificates.client.CertificatesClient.create` :param name: str :param domain_names: List[str] Domains and subdomains that should be contained in the Certificate :param labels: Dict[str, str] (optional) User-defined labels (key-value pairs) :return: :class:`BoundCertificate ` """ data: dict[str, Any] = { "name": name, "type": Certificate.TYPE_MANAGED, "domain_names": domain_names, } if labels is not None: data["labels"] = labels response = self._client.request(url=self._base_url, method="POST", json=data) return CreateManagedCertificateResponse( certificate=BoundCertificate(self, response["certificate"]), action=BoundAction(self._parent.actions, response["action"]), ) def update( self, certificate: Certificate | BoundCertificate, name: str | None = None, labels: dict[str, str] | None = None, ) -> BoundCertificate: """Updates a Certificate. You can update a certificate name and labels. :param certificate: :class:`BoundCertificate ` or :class:`Certificate ` :param name: str (optional) New name to set :param labels: Dict[str, str] (optional) User-defined labels (key-value pairs) :return: :class:`BoundCertificate ` """ data: dict[str, Any] = {} if name is not None: data["name"] = name if labels is not None: data["labels"] = labels response = self._client.request( url=f"{self._base_url}/{certificate.id}", method="PUT", json=data, ) return BoundCertificate(self, response["certificate"]) def delete(self, certificate: Certificate | BoundCertificate) -> bool: """Deletes a certificate. :param certificate: :class:`BoundCertificate ` or :class:`Certificate ` :return: True """ self._client.request( url=f"{self._base_url}/{certificate.id}", method="DELETE", ) # Return always true, because the API does not return an action for it. When an error occurs a HcloudAPIException will be raised return True def get_actions_list( self, certificate: Certificate | BoundCertificate, status: list[ActionStatus] | None = None, sort: list[ActionSort] | None = None, page: int | None = None, per_page: int | None = None, ) -> ActionsPageResult: """ Returns a paginated list of Actions for a Certificate. :param certificate: Certificate to get the Actions for. :param status: Filter the Actions by status. :param sort: Sort Actions by field and direction. :param page: Page number to get. :param per_page: Maximum number of Actions returned per page. """ return self._get_actions_list( f"{self._base_url}/{certificate.id}", status=status, sort=sort, page=page, per_page=per_page, ) def get_actions( self, certificate: Certificate | BoundCertificate, status: list[ActionStatus] | None = None, sort: list[ActionSort] | None = None, ) -> list[BoundAction]: """ Returns all Actions for a Certificate. :param certificate: Certificate to get the Actions for. :param status: Filter the Actions by status. :param sort: Sort Actions by field and direction. """ return self._iter_pages( self.get_actions_list, certificate, status=status, sort=sort, ) def retry_issuance( self, certificate: Certificate | BoundCertificate, ) -> BoundAction: """Returns all action objects for a Certificate. :param certificate: :class:`BoundCertificate ` or :class:`Certificate ` :return: :class:`BoundAction ` """ response = self._client.request( url=f"{self._base_url}/{certificate.id}/actions/retry", method="POST", ) return BoundAction(self._parent.actions, response["action"])