You are here

Home » API reference » Aegir HTTPS 7.3 » Site.php » Provision_Config_Http_Https_Site

function Provision_Config_Http_Https_Site::write in Aegir HTTPS 7.3

File

drush/Provision/Config/Http/Https/Site.php, line 16

Class

Provision_Config_Http_Https_Site
Base class for HTTPS enabled virtual hosts.

Code

function write() {
  if ($this->https_enabled && $this->https_key && !drush_get_error()) {
    $path = dirname($this->data['https_cert']);

    // Make sure the ssl.d directory in the server ssl.d exists.
    provision_file()
      ->create_dir($path, dt("HTTPS Certificate directory for %key on %server", array(
      '%key' => $this->https_key,
      '%server' => $this->data['server']->remote_host,
    )), 0700);

    // Copy the certificates to the server's ssl.d directory.
    if (!provision_file()
      ->copy($this->data['https_cert_source'], $this->data['https_cert'])
      ->status()) {
      if (drush_get_option('hosting_https_fail_task_if_certificate_fails', FALSE)) {
        drush_set_error('HTTPS_CERT_COPY_FAIL', dt('failed to copy HTTPS certificate in place'));
      }
      else {
        drush_log(dt('failed to copy HTTPS certificate in place'), 'warning');
      }
      $this->https_cert_ok = FALSE;
    }
    if (!provision_file()
      ->copy($this->data['https_cert_key_source'], $this->data['https_cert_key'])
      ->status()) {
      if (drush_get_option('hosting_https_fail_task_if_certificate_fails', FALSE)) {
        drush_set_error('HTTPS_KEY_COPY_FAIL', dt('failed to copy HTTPS key in place'));
      }
      else {
        drush_log(dt('failed to copy HTTPS key in place'), 'warning');
      }
      $this->https_cert_ok = FALSE;
    }

    // Copy the chain certificate, if it is set.
    if (!empty($this->data['https_chain_cert_source'])) {
      if (!provision_file()
        ->copy($this->data['https_chain_cert_source'], $this->data['https_chain_cert'])
        ->status()) {
        if (drush_get_option('hosting_https_fail_task_if_certificate_fails', FALSE)) {
          drush_set_error('HTTPS_CHAIN_COPY_FAIL', dt('failed to copy HTTPS certficate chain in place'));
        }
        else {
          drush_log(dt('failed to copy HTTPS certficate chain in place'), 'warning');
        }
        $this->https_cert_ok = FALSE;
      }
    }

    // If cert is not ok, turn off ssl_redirection.
    if ($this->https_cert_ok == FALSE) {
      $this->data['ssl_redirection'] = FALSE;
    }

    // Sync the key directory to the remote server.
    $this->data['server']
      ->sync($path);
  }

  // Call parent's write AFTER ensuring the certificates are in place to prevent
  // the vhost from referencing missing files.
  parent::write();
}