- with open(SAML2_TEMPLATE) as f:
- template = f.read()
- t = Template(template)
- hunk = t.substitute(saml_base=args['saml_base'],
- saml_protect=saml_protect,
- saml_sp_key=c.key,
- saml_sp_cert=c.cert,
- saml_sp_meta=sp_metafile,
- saml_idp_meta=idp_metafile,
- saml_sp=args['saml_sp'],
- saml_auth=saml_auth, sp=psp)
-
- with open(SAML2_CONFFILE, 'w+') as f:
- f.write(hunk)
-
- pw = pwd.getpwnam(args['httpd_user'])
- for root, dirs, files in os.walk(SAML2_HTTPDIR):
- for name in dirs:
- target = os.path.join(root, name)
- os.chown(target, pw.pw_uid, pw.pw_gid)
- os.chmod(target, 0700)
- for name in files:
- target = os.path.join(root, name)
- os.chown(target, pw.pw_uid, pw.pw_gid)
- os.chmod(target, 0600)
+ samlopts = {'saml_base': args['saml_base'],
+ 'saml_protect': saml_protect,
+ 'saml_sp_key': c.key,
+ 'saml_sp_cert': c.cert,
+ 'saml_sp_meta': sp_metafile,
+ 'saml_idp_meta': idp_metafile,
+ 'saml_sp': args['saml_sp'],
+ 'saml_auth': saml_auth,
+ 'sp': psp}
+ files.write_from_template(SAML2_CONFFILE, SAML2_TEMPLATE, samlopts)
+
+ files.fix_user_dirs(SAML2_HTTPDIR, args['httpd_user'])