//dZddlmZddlmZddlmZddlmZddlmZddlm Z ddl m Z dd l m Z dd l m Z dd l mZdd lmZdd lmZddlm ZddlmZddlmZddlZe j6ej8j:j<Ze j6ej8j@jBZ"dZ#d#dZ$d$dZ% d%dZ&d&dZ'd'dZ(dZ) d(dZ* d)dZ+d$dZ,dZ-dZ.dZ/dZ0dZ1d*d Z2d*d!Z3d"Z4y)+z'Helpers for parsing resource arguments.)absolute_import)division)unicode_literals)base) locations) exceptions)concepts)deps)handlers)util) resource_args) completers)concept_parsers) propertiesNc.tjdS)Nzcertificate template)namer ResourceParameterAttributeConfig9lib/googlecloudsdk/command_lib/privateca/resource_args.py"CertificateTemplateAttributeConfigr,s  2 28N OOrc:tj|d|xsgS)Nz%The parent CA Pool of the {resource}.r help_text fallthroughsr) display_namers rCaPoolAttributeConfigr1s#  2 2 7%2 rc8tjd|xsgS)N certificate)rrrrs rCertAttributeConfigr":s!  2 2 |'9r rc>|xsg}tj|d|S)Nz4The issuing certificate authority of the {resource}.rrarg_namers rCertAuthorityAttributeConfigr&Bs*#,  2 2 F rcf|xstg}tj|dtj|S)NzThe location of the {resource}.)rr completerr)LOCATION_PROPERTY_FALLTHROUGHr rprivateca_completersLocationsCompleterr$s rLocationAttributeConfigr,Ms5@"?!@,  2 2 1$77  rc:tj|d|xsgS)aDO NOT USE THIS for most flags. This config is only useful when you want to provide an explicit project fallthrough. For most cases, prefer concepts.DEFAULT_PROJECT_ATTRIBUTE_CONFIG. Args: arg_name: Name of the flag used to specify this attribute. Defaults to 'project'. fallthroughs: List of deps.Fallthrough objects to provide project values. Returns: A concepts.ResourceParameterAttributeConfig for a project. z&The project containing the {resource}.rrr$s rProjectAttributeConfigr.Ws%  2 2 8%2 rc>tjddtjdtjdtj dt dtjdtgtdtjdtg S) zCreates a resource spec for a KMS CryptoKeyVersion. Defaults to the location and project of the CA, specified through flags or properties. Returns: A concepts.ResourceSpec for a CryptoKeyVersion. zAcloudkms.projects.locations.keyRings.cryptoKeys.cryptoKeyVersionsz key versionT) kms_prefixz kms-locationlocationz kms-projectproject) resource_namecryptoKeyVersionsId cryptoKeysId keyRingsId locationsId projectsId) r ResourceSpeckms_argsKeyVersionAttributeConfigKeyAttributeConfigKeyringAttributeConfigr,r ArgFallthroughr)r.PROJECT_PROPERTY_FALLTHROUGHrrrCreateKmsKeyVersionResourceSpecr@ls   I!"<<M..$?00DA)    z *,I J(    y )+G H rc tjdd|t||t|t ||tj dS)Nz;privateca.projects.locations.caPools.certificateAuthoritiesv1r!T) api_versionr3certificateAuthoritiesId caPoolsIdr7r8disable_auto_completers)r r9r&rr, DEFAULT_PROJECT_ATTRIBUTE_CONFIG)rcertificate_authority_attributelocation_attributelocation_fallthroughspool_id_fallthroughsca_id_fallthroughss rCreateCertAuthorityResourceSpecrMsU   C ; )8J &3GH) +@::" rc tjdd|t|t||tjdS)Nz$privateca.projects.locations.caPoolsrBr!T)rCr3rEr7r8rF)r r9rr,rG)rrIrKrJs rCreateCaPoolResourceSpecrOsE   , %3GH) +@::"  rc tjdd|t|xsgtdt dtj dS)Nz1privateca.projects.locations.caPools.certificatesrBr!z issuer-poolzissuer-locationF)rCr3certificatesIdrEr7r8rF)r r9r"rr,rG)rid_fallthroughss rCreateCertResourceSpecrSsH   9 (o6KL%m4)*;<::#  rc vtjdd|tttjdS)Nz1privateca.projects.locations.certificateTemplatesrBT)rCr3certificateTemplatesIdr7r8rF)r r9rr,rG)rs r%CreateCertificateTemplateResourceSpecrVs6   9 ?A)+::"  rcd}tjj|t|dj |dj |y)aAdd a positional resource argument for a GA Certificate Authority. NOTE: Must be used only if it's the only resource arg in the command. Args: parser: the parser for the command. verb: str, the verb to describe the resource, such as 'to update'. CERTIFICATE_AUTHORITYzThe certificate authority {}.TrequiredN)r ConceptParser ForResourcerMformat AddToParserparserverbr%s r%AddCertAuthorityPositionalResourceArgrbsJ%(++%h/%,,T2 , Krcd}tjj|t|dj |dj |y)zAdd a positional resource argument for a CA Pool. NOTE: Must be used only if it's the only resource arg in the command. Args: parser: the parser for the command. verb: str, the verb to describe the resource, such as 'to update'. CA_POOLzThe ca pool {}.TrYN)rr[r\rOr]r^r_s rAddCaPoolPositionalResourceArgresJ(++x(t$ , Krcd}tjj|t|dj |dj |y)zAdd a positional resource argument for a GA Certificate. NOTE: Must be used only if it's the only resource arg in the command. Args: parser: the parser for the command. verb: str, the verb to describe the resource, such as 'to update'. CERTIFICATEzThe certificate {}.TrYN)rr[r\rSr]r^r_s rAddCertPositionalResourceArgrhsJ(++X&""4( , Krcd}tjj|t|dj |dj |y)aAdd a positional resource argument for a certificate template. NOTE: Must be used only if it's the only resource arg in the command. Args: parser: the parser for the command. verb: str, the verb to describe the resource, such as 'to update'. CERTIFICATE_TEMPLATEzThe template {}.TrYN)rr[r\rVr]r^r_s r+AddCertificateTemplatePositionalResourceArgrksJ$(+++H5% , Krc tj|}|j|vr=tj|dj dj t|y)zHRaises an exception if the given resource is in an unsupported location.)versionzDResource is in an unsupported location. Supported locations are: {}.z, N)rGetSupportedLocationsr7rInvalidArgumentExceptionr]joinsorted) resource_refr%rmsupported_locationss rValidateResourceLocationrtsY!77H%88  - -N  &!456 7 9rc&tj|jj}||jk(r$|j |k7rt jd||jk(r%|j |k7rt jdyy)zRaises an exception if the Certificate Authority type is not expected_type. Args: expected_type: The expected type. ca: The ca object to check. version: The version of the API to check against. )rCzgCannot perform subordinates command on Root CA. Please use the `privateca roots` command group instead.znCannot perform roots command on Subordinate CA. Please use the `privateca subordinates` command group instead.N) rGetMessagesModuleCertificateAuthorityTypeValueValuesEnum SUBORDINATEtypeprivateca_exceptions$InvalidCertificateAuthorityTypeError SELF_SIGNED) expected_typecarm ca_type_enums rCheckExpectedCATyper's'',,l...277m3K  C C 4  000RWW 5M  C C ; 6N0rct|j|sy|jj|}|jj Dcgc]}t j |}}|Dcgc]}|j|s|c}sy |jd|_ |j|ycc}wcc}w#tj$r.}tj|tj |d}~wwxYw)zJRaises a ParseError if the given resource_arg_name is partially specified.NF)hasattrCONCEPTSArgNameToConceptInfoattribute_to_args_mapvaluesr NamespaceFormat IsSpecified ClearCache allow_emptyParser InitializationErrorr ParseErrorsix text_type)argsresource_arg_name concept_infoargassociated_argses r%ValidateResourceIsCompleteIfSpecifiedr>s  1 2 334EF,33::<<# 3< ) B#D,<,rs .&'16.5151DSSD* !9 8 8((! 8t77""  P 48*8%<! 8" *  $$$*.Cr