admin: add action to regenerate VPN client key/certificate (#417)

Author: matzf

scionlab/admin.py

@@ -616,6 +616,7 @@ def num_clients(self, obj):
 
 @admin.register(VPNClient)
 class VPNClientAdmin(admin.ModelAdmin):
+    actions = ['update_key']
     list_display = ('__str__', 'vpn', 'ip', 'common_name')
     list_display_links = ('__str__',)
     list_filter = ('vpn', 'active')
@@ -629,6 +630,15 @@ def get_form(self, request, obj=None, **kwargs):
             kwargs['form'] = VPNClientCreationForm
         return super().get_form(request, obj, **kwargs)
 
+    def update_key(self, request, queryset):
+        """
+        Admin action: generate new keys / certificates for the selected VPN clients.
+        """
+        for vpnclient in queryset.iterator():
+            vpnclient.update_key()
+
+    update_key.short_description = 'Generate new keys/certificates for the selected VPN clients'
+
 
 class VPNClientCreationForm(_CreateUpdateModelForm):
     """

scionlab/models/vpn.py

@@ -224,6 +224,14 @@ def init_key(self):
         self.private_key = key
         self.cert = cert
 
+    def update_key(self):
+        """
+        Generate new key/certificate and save. Bump configuration on related Host.
+        """
+        self.init_key()
+        self.save()
+        self.host.bump_config()
+
 
 @receiver(pre_delete, sender=VPN, dispatch_uid='vpn_delete_callback')
 def _vpn_pre_delete(sender, instance, using, **kwargs):