R/ssl.R
In jeroenooms/mongolite: Fast and Simple 'MongoDB' Client for R
Defines functions
ssl_options
Documented in
ssl_options
#' Connection SSL options
#'
#' Set SSL options to connect to the MongoDB server.
#'
#' @useDynLib mongolite R_default_ssl_options
#' @export
#' @param cert path to PEM file with client certificate, or a certificate as
#' returned by [openssl::read_cert()]
#' @param key path to PEM file with private key from the above certificate, or
#' a key as returned by [openssl::read_key()]. This can
#' be the same PEM file as cert.
#' @param ca a certificate authority PEM file
#' @param ca_dir directory with CA files
#' @param crl_file file with revocations
#' @param allow_invalid_hostname do not verify hostname on server certificate
#' @param weak_cert_validation disable certificate verification
ssl_options <- function(cert = NULL, key = cert, ca = NULL, ca_dir = NULL,
crl_file = NULL, allow_invalid_hostname = NULL, weak_cert_validation = NULL){
opts <- .Call(R_default_ssl_options)
names(opts) <- c("pem_file", "ca_file", "ca_dir", "crl_file", "allow_invalid_hostname", "weak_cert_validation")
if(length(cert)){
key <- openssl::read_key(key)
cert <- openssl::read_cert(cert)
if(!identical(as.list(key)$pubkey, as.list(cert)$pubkey))
warning("Key does not seem to match certificate!")
tmp <- tempfile()
passwd <- paste(openssl::sha1(openssl::rand_bytes(100)), collapse = "")
keystring <- if(inherits(key, 'rsa')){
openssl::write_pkcs1(key, password = passwd)
} else {
openssl::write_pem(key, password = passwd)
}
writeLines(c(keystring, openssl::write_pem(cert)), con = tmp)
opts$pem_file = tmp
opts$pem_pwd = passwd
}
if(length(ca))
opts$ca_file = normalizePath(ca, mustWork = TRUE)
if(length(ca_dir))
opts$ca_dir = normalizePath(ca_dir, mustWork = TRUE)
if(length(crl_file))
opts$crl_file = normalizePath(crl_file, mustWork = TRUE)
if(length(allow_invalid_hostname))
opts$allow_invalid_hostname = allow_invalid_hostname
if(length(weak_cert_validation))
opts$weak_cert_validation = weak_cert_validation
structure(as.list(opts), class = "miniprint")
}
jeroenooms/mongolite documentation built on Jan. 12, 2024, 10:11 p.m.
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Defines functions ssl_options
Documented in ssl_options
#' Connection SSL options
#'
#' Set SSL options to connect to the MongoDB server.
#'
#' @useDynLib mongolite R_default_ssl_options
#' @export
#' @param cert path to PEM file with client certificate, or a certificate as
#' returned by [openssl::read_cert()]
#' @param key path to PEM file with private key from the above certificate, or
#' a key as returned by [openssl::read_key()]. This can
#' be the same PEM file as cert.
#' @param ca a certificate authority PEM file
#' @param ca_dir directory with CA files
#' @param crl_file file with revocations
#' @param allow_invalid_hostname do not verify hostname on server certificate
#' @param weak_cert_validation disable certificate verification
ssl_options <- function(cert = NULL, key = cert, ca = NULL, ca_dir = NULL,
crl_file = NULL, allow_invalid_hostname = NULL, weak_cert_validation = NULL){
opts <- .Call(R_default_ssl_options)
names(opts) <- c("pem_file", "ca_file", "ca_dir", "crl_file", "allow_invalid_hostname", "weak_cert_validation")
if(length(cert)){
key <- openssl::read_key(key)
cert <- openssl::read_cert(cert)
if(!identical(as.list(key)$pubkey, as.list(cert)$pubkey))
warning("Key does not seem to match certificate!")
tmp <- tempfile()
passwd <- paste(openssl::sha1(openssl::rand_bytes(100)), collapse = "")
keystring <- if(inherits(key, 'rsa')){
openssl::write_pkcs1(key, password = passwd)
} else {
openssl::write_pem(key, password = passwd)
}
writeLines(c(keystring, openssl::write_pem(cert)), con = tmp)
opts$pem_file = tmp
opts$pem_pwd = passwd
}
if(length(ca))
opts$ca_file = normalizePath(ca, mustWork = TRUE)
if(length(ca_dir))
opts$ca_dir = normalizePath(ca_dir, mustWork = TRUE)
if(length(crl_file))
opts$crl_file = normalizePath(crl_file, mustWork = TRUE)
if(length(allow_invalid_hostname))
opts$allow_invalid_hostname = allow_invalid_hostname
if(length(weak_cert_validation))
opts$weak_cert_validation = weak_cert_validation
structure(as.list(opts), class = "miniprint")
}
R Package Documentation
Browse R Packages
We want your feedback!
Note that we can't provide technical support on individual packages. You should contact the package authors for that.
Embedding an R snippet on your website
Add the following code to your website.
For more information on customizing the embed code, read Embedding Snippets.