NAME
Lim::Plugin::SoftHSM - SoftHSM management plugin for Lim
VERSION
Version 0.13
SYNOPSIS
use Lim::Plugin::SoftHSM;
# Create a Server object
$server = Lim::Plugin::SoftHSM->Server;
# Create a Client object
$client = Lim::Plugin::SoftHSM->Client;
# Create a CLI object
$cli = Lim::Plugin::SoftHSM->CLI;DESCRIPTION
This plugin lets you manage a SoftHSM installation via Lim.
METHODS
- $plugin_name = Lim::Plugin::SoftHSM->Name
-
Returns the plugin's name.
- $plugin_description = Lim::Plugin::SoftHSM->Description
-
Returns the plugin's description.
- $call_hash_ref = Lim::Plugin::SoftHSM->Calls
-
Returns a hash reference to the calls that can be made to this plugin, used both in Server and Client to verify input and output arguments.
See CALLS for list of calls and arguments.
- $command_hash_ref = Lim::Plugin::SoftHSM->Commands
-
Returns a hash reference to the CLI commands that can be made by this plugin.
See COMMANDS for list of commands and arguments.
CALLS
See Lim::Component::Client on how calls and callback functions should be used.
- $client->ReadVersion(sub { my ($call) = @_; })
-
Get the version of the plugin and version of SoftHSM found.
$response = { version => string, # Version of the plugin program => # Single hash or an array of hashes as below: { name => string, # Program name version => string, # Program version } }; - $client->ReadConfigs(sub { my ($call) = @_; })
-
Get a list of all config files that can be managed by this plugin.
$response = { file => # Single hash or an array of hashes as below: { name => string, # Full path file name read => bool, # True if readable write => bool, # True if writable } }; - $client->CreateConfig($input, sub { my ($call) = @_; })
-
Create a new config file, returns an error if it failed to create the config file otherwise there is no response.
$input = { file => # Single hash or an array of hashes as below: { name => string, # Full path file name content => string, # Configuration content } }; - $client->ReadConfig($input, sub { my ($call) = @_; })
-
Returns a config file as a content.
$input = { file => # Single hash or an array of hashes as below: { name => string, # Full path file name } }; $response = { file => # Single hash or an array of hashes as below: { name => string, # Full path file name content => string, # Configuration content } }; - $client->UpdateConfig($input, sub { my ($call) = @_; })
-
Update a config file, this will overwrite the file. Returns an error if it failed to update the config file otherwise there is no reponse.
$input = { file => # Single hash or an array of hashes as below: { name => string, # Full path file name content => string, # Configuration content } }; - $client->DeleteConfig($input, sub { my ($call) = @_; })
-
Delete a config file, returns an error if it failed to delete the config file otherwise there is no reponse.
$input = { file => # Single hash or an array of hashes as below: { name => string, # Full path file name } }; - $client->ReadShowSlots(sub { my ($call) = @_; })
-
Get a list of all SoftHSM slots that are available.
$response = { slot => # Single hash or an array of hashes as below: { id => integer, # Slot id token_initialized => bool, # True if the token has been initialized token_label => string, # Token label token_present => bool, # True if there is a token present user_pin_initialized => bool, # True if the user pin for the token has # been initialized } }; - $client->CreateInitToken($input, sub { my ($call) = @_; })
-
Initialize a slot, returns an error if it failed to initialize the slot otherwise there is no response.
$input = { token => # Single hash or an array of hashes as below: { slot => integer, # Slot id label => string, # Label pin => string, # User pin so_pin => string, # Security Officer pin } }; - $client->CreateImport($input, sub { my ($call) = @_; })
-
Import a key into a slot, returns an error if it failed to import the key otherwise there is no response.
$input = { key_pair => # Single hash or an array of hashes as below: { slot => integer, # Slot to import to id => string, # Key id label => string, # Key label pin => string, # User pin content => string, # Key in PKCS#8 format file_pin => string, # File pin if encrypted (optional) } }; - $client->ReadExport($input, sub { my ($call) = @_; })
-
Export a key from a slot, returns an error if it failed to export the key.
$input = { key_pair => # Single hash or an array of hashes as below: { slot => integer, # Slot to export from id => string, # Key id pin => string, # User pin file_pin => string, # File pin to use for encryption (optional) } }; $response = { key_pair => # Single hash or an array of hashes as below: { id => string, # Key id content => string, # Key in PKCS#8 format } }; - $client->UpdateOptimize($input, sub { my ($call) = @_; })
-
Optimize the SoftHSM database, returns an error if it failed to optimize the database otherwise there is no response.
WARNING: Make sure that no application is currently using SoftHSM and session objects.
$input = { slot => # Single hash or an array of hashes as below: { id => integer, # Slot id pin => string, # User pin } }; - $client->UpdateTrusted($input, sub { my ($call) = @_; })
-
Update the trusted status of a key, returns an error if it failed to update the key otherwise there is no response. Must have either key id or key label.
$input = { key_pair => # Single hash or an array of hashes as below: { slot => integer, # Slot where the key is id => string, # Key id (optional) label => string, # Key label (optional) type => string, # Key type so_pin => string, # Security Officer pin trusted => bool, # True if the key should be trusted } };
COMMANDS
- version
-
Show version of the plugin and SoftHSM.
- configs
-
List configuration files.
- config view <file>
-
Display the content of a configuration file.
- config edit <file>
-
Edit a configuration file.
- show slots
-
List information about SoftHSM slots.
- init token <slot> <label> <SO pin> <pin>
-
Initialize a slot.
- import [--slot <slot>] [--pin <pin>] [--id <id>] [--label <label>] [--file-pin <file pin>] <file>
-
Import a key into SoftHSM from a local file.
- export [--slot <slot>] [--pin <pin>] [--id <id>] [--file-pin <file pin>] <file>
-
Export a key from SoftHSM into a local file.
- optimize [--pin <pin>] <slots ... >
-
Optimize slot(s).
- trust [--slot <slot>] [--so-pin <SO pin>] [--type <type>] < --id <id> | --label <label> >
-
Mark a key as trusted.
- untrust [--slot <slot>] [--so-pin <SO pin>] [--type <type>] < --id <id> | --label <label> >
-
Remove the trusted marking on a key.
AUTHOR
Jerry Lundström, <lundstrom.jerry at gmail.com>
BUGS
Please report any bugs or feature requests to https://github.com/jelu/lim-plugin-softhsm/issues.
SUPPORT
You can find documentation for this module with the perldoc command.
perldoc Lim::Plugin::SoftHSMYou can also look for information at:
Lim issue tracker (report bugs here)
ACKNOWLEDGEMENTS
LICENSE AND COPYRIGHT
Copyright 2012-2013 Jerry Lundström.
This program is free software; you can redistribute it and/or modify it under the terms of either: the GNU General Public License as published by the Free Software Foundation; or the Artistic License.
See http://dev.perl.org/licenses/ for more information.