add pmg_verify_tls_policy_strict and use it in API

[pmg-api.git] / PMG / API2 / DestinationTLSPolicy.pm

diff --git a/PMG/API2/DestinationTLSPolicy.pm b/PMG/API2/DestinationTLSPolicy.pm
index 4c1ab565b65c9c7e4ebc9bd3c32357034d447799..ecb5a8f30cfd0c6aad00d7e99e14fbd9dec67e35 100644 (file)
--- a/PMG/API2/DestinationTLSPolicy.pm
+++ b/PMG/API2/DestinationTLSPolicy.pm
@@ -71,6 +71,10 @@ __PACKAGE__->register_method ({
     code => sub {
        my ($param) = @_;
        my $domain = $param->{domain};
+       my $policy = PMG::Config::pmg_verify_tls_policy_strict($param->{policy});
+
+       raise_param_exc({ policy => "$param->{policy} is not a valid TLSPolicy" })
+           if ! defined($policy);
 
        my $code = sub {
            my $tls_policy = PVE::INotify::read_file('tls_policy');
@@ -152,7 +156,10 @@ __PACKAGE__->register_method ({
     code => sub {
        my ($param) = @_;
        my $domain = $param->{domain};
-       my $policy = $param->{policy};
+       my $policy = PMG::Config::pmg_verify_tls_policy_strict($param->{policy});
+
+       raise_param_exc({ policy => "$param->{policy} is not a valid TLSPolicy" })
+           if ! defined($policy);
 
        my $code = sub {