From: Dietmar Maurer <dietmar@proxmox.com>
Date: Wed, 28 Dec 2016 10:04:37 +0000 (+0100)
Subject: example2.pl: add a second example
X-Git-Url: https://git.proxmox.com/?p=pve-apiclient.git;a=commitdiff_plain;h=8291fb9a6e6bd08cce62bd2bbc9adf9ea417bccd

example2.pl: add a second example
---

diff --git a/Makefile b/Makefile
index 287dc46..08b1ce4 100644
--- a/Makefile
+++ b/Makefile
@@ -23,6 +23,7 @@ install:
 	install -D -m 0644 PVE/APIClient/LWP.pm ${PERL5DIR}/PVE/APIClient/LWP.pm
 	install -d -m 755 ${DOCDIR}/examples
 	install -m 0755 examples/example1.pl ${DOCDIR}/examples
+	install -m 0755 examples/example2.pl ${DOCDIR}/examples
 
 .PHONY: upload
 upload: ${DEB}
diff --git a/debian/changelog b/debian/changelog
index 7ad1dee..81d3dea 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,6 +1,6 @@
 libpve-apiclient-perl (1.0-2) unstable; urgency=medium
 
-  * add simple example code: example1.pl
+  * add simple example code: example1.pl and example2.pl
 
  -- Proxmox Support Team <support@proxmox.com>  Wed, 28 Dec 2016 10:46:52 +0100
 
diff --git a/examples/example2.pl b/examples/example2.pl
new file mode 100755
index 0000000..96bca55
--- /dev/null
+++ b/examples/example2.pl
@@ -0,0 +1,56 @@
+#!/usr/bin/perl
+
+# NOTE: you need to run this on a PVE host, or modify the source to
+# provide username/password/hostname from somewhere else.
+
+use strict;
+use warnings;
+
+use PVE::APIClient::LWP;
+
+use PVE::AccessControl;
+use PVE::INotify;
+use JSON;
+
+# normally you use username/password,
+# but we can simply create a ticket and CRSF token if we are root
+# running on a pve host
+
+my $hostname = PVE::INotify::read_file("hostname");
+
+my $ticket = PVE::AccessControl::assemble_ticket('root@pam');
+my $csrftoken = PVE::AccessControl::assemble_csrf_prevention_token('root@pam');
+
+sub get_local_cert_fingerprint {
+    my ($node) = @_;
+    
+    my $cert_path = "/etc/pve/nodes/$node/pve-ssl.pem";
+    my $custom_cert_path = "/etc/pve/nodes/$node/pveproxy-ssl.pem";
+
+    $cert_path = $custom_cert_path if -f $custom_cert_path;
+
+    my $bio = Net::SSLeay::BIO_new_file($cert_path, 'r');
+    my $cert = Net::SSLeay::PEM_read_bio_X509($bio);
+    Net::SSLeay::BIO_free($bio);
+
+    my $fp = Net::SSLeay::X509_get_fingerprint($cert, 'sha256');
+    die "got empty fingerprint" if !defined($fp) || ($fp eq '');
+
+    return $fp;
+}
+
+my $local_fingerprint = get_local_cert_fingerprint($hostname);
+
+my $conn = PVE::APIClient::LWP->new(
+    #username => 'root@pam',
+    #password => 'yourpassword',
+    ticket => $ticket,
+    csrftoken => $csrftoken,
+    host => $hostname,
+    # add local hosts cert fingerprint
+    cached_fingerprints => {
+	$local_fingerprint => 1,
+    });
+
+my $res = $conn->get("api2/json/access/domains", {});
+print to_json($res, { pretty => 1, canonical => 1});