Add Enabled config flag

Allows for creating the CA prior to having config info available, creating with Enabled = false skips config validation.
Keyfactor · Mar 11, 2024 · 48a3fe7 · 48a3fe7
1 parent 6730074
commit 48a3fe7
Show file tree

Hide file tree

Showing 3 changed files with 31 additions and 0 deletions.
diff --git a/digicert-certcentral-anycagateway/CertCentralCAConnector.cs b/digicert-certcentral-anycagateway/CertCentralCAConnector.cs
@@ -352,6 +352,13 @@ public Dictionary<string, PropertyConfigInfo> GetCAConnectorAnnotations()
 					Hidden = false,
 					DefaultValue = false,
 					Type = "Boolean"
+				},
+				[CertCentralConstants.Config.ENABLED] = new PropertyConfigInfo()
+				{
+					Comments = "Flag to Enable or Disable gateway functionality. Disabling is primarily used to allow creation of the CA prior to configuration information being available.",
+					Hidden = false,
+					DefaultValue = true,
+					Type = "Boolean"
 				}
 			};
 		}
@@ -484,6 +491,14 @@ public Dictionary<string, PropertyConfigInfo> GetTemplateParameterAnnotations()
 		public async Task Ping()
 		{
 			_logger.MethodEntry(LogLevel.Trace);
+			if (!_config.Enabled)
+			{
+				_logger.LogWarning($"The CA is currently in the Disabled state. It must be Enabled to perform operations. Skipping connectivity test...");
+				_logger.MethodExit(LogLevel.Trace);
+				return;
+			}
+
+
 			try
 			{
 				CertCentralClient client = CertCentralClientUtilities.BuildCertCentralClient(_config);
@@ -693,6 +708,20 @@ public async Task Synchronize(BlockingCollection<AnyCAPluginCertificate> blockin
 		public async Task ValidateCAConnectionInfo(Dictionary<string, object> connectionInfo)
 		{
 			_logger.MethodEntry(LogLevel.Trace);
+			try
+			{
+				if (!(bool)connectionInfo[CertCentralConstants.Config.ENABLED])
+				{
+					_logger.LogWarning($"The CA is currently in the Disabled state. It must be Enabled to perform operations. Skipping validation...")
+					_logger.MethodExit(LogLevel.Trace);
+					return;
+				}
+			}
+			catch (Exception ex)
+			{
+				_logger.LogError($"Exception: {LogHandler.FlattenException(ex)}");
+			}
+
 			List<string> errors = new List<string>();
 
 			_logger.LogTrace("Checking the API Key.");

diff --git a/digicert-certcentral-anycagateway/CertCentralConfig.cs b/digicert-certcentral-anycagateway/CertCentralConfig.cs
@@ -12,5 +12,6 @@ public class CertCentralConfig
 		public string Region { get; set; } = "US";
 		public int? DivisionId { get; set; }
 		public bool? RevokeCertificateOnly { get; set; }
+		public bool Enabled { get; set; } = true;
 	}
 }
diff --git a/digicert-certcentral-anycagateway/Constants.cs b/digicert-certcentral-anycagateway/Constants.cs
@@ -26,6 +26,7 @@ public class Config
 			public const string CA_CERT_ID = "CACertId";
 			public const string RENEWAL_WINDOW = "RenewalWindowDays";
 			public const string REVOKE_CERT = "RevokeCertificateOnly";
+			public const string ENABLED = "Enabled";
 		}
 
 		public class RequestAttributes