diff options
| author | Fraser Tweedale <ftweedal@redhat.com> | 2016-11-30 10:06:15 +1000 |
|---|---|---|
| committer | Fraser Tweedale <ftweedal@redhat.com> | 2016-12-12 12:44:20 +1000 |
| commit | 1d706a075f32d7c30a6259be675b8f34ef2a9c99 (patch) | |
| tree | 0e04768978cf670710c7f70e79ad700cbc3f73e7 /base/ca/src | |
| parent | 9c23b02b00b13a834b636e9266ee1ae80506f228 (diff) | |
| download | pki-1d706a075f32d7c30a6259be675b8f34ef2a9c99.tar.gz pki-1d706a075f32d7c30a6259be675b8f34ef2a9c99.tar.xz pki-1d706a075f32d7c30a6259be675b8f34ef2a9c99.zip | |
Remove principal type assumption from AuthorityService
Part of: https://fedorahosted.org/pki/ticket/1359
Diffstat (limited to 'base/ca/src')
| -rw-r--r-- | base/ca/src/org/dogtagpki/server/ca/rest/AuthorityService.java | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/base/ca/src/org/dogtagpki/server/ca/rest/AuthorityService.java b/base/ca/src/org/dogtagpki/server/ca/rest/AuthorityService.java index 584ab6e59..18542d379 100644 --- a/base/ca/src/org/dogtagpki/server/ca/rest/AuthorityService.java +++ b/base/ca/src/org/dogtagpki/server/ca/rest/AuthorityService.java @@ -36,6 +36,7 @@ import javax.ws.rs.core.Response; import javax.ws.rs.core.UriInfo; import com.netscape.certsrv.apps.CMS; +import com.netscape.certsrv.authentication.IAuthToken; import com.netscape.certsrv.authority.AuthorityData; import com.netscape.certsrv.authority.AuthorityResource; import com.netscape.certsrv.base.BadRequestDataException; @@ -46,6 +47,7 @@ import com.netscape.certsrv.base.ForbiddenException; import com.netscape.certsrv.base.PKIException; import com.netscape.certsrv.base.ResourceNotFoundException; import com.netscape.certsrv.base.ServiceUnavailableException; +import com.netscape.certsrv.base.SessionContext; import com.netscape.certsrv.ca.AuthorityID; import com.netscape.certsrv.ca.CADisabledException; import com.netscape.certsrv.ca.CAEnabledException; @@ -59,7 +61,6 @@ import com.netscape.certsrv.ca.IssuerUnavailableException; import com.netscape.certsrv.common.OpDef; import com.netscape.certsrv.common.ScopeDef; import com.netscape.certsrv.logging.ILogger; -import com.netscape.cms.realm.PKIPrincipal; import com.netscape.cms.servlet.base.PKIService; import com.netscape.cmsutil.util.Utils; @@ -191,9 +192,6 @@ public class AuthorityService extends PKIService implements AuthorityResource { } } - PKIPrincipal principal = - (PKIPrincipal) servletRequest.getUserPrincipal(); - Map<String, String> auditParams = new LinkedHashMap<>(); auditParams.put("dn", data.getDN()); if (parentAID != null) @@ -201,10 +199,12 @@ public class AuthorityService extends PKIService implements AuthorityResource { if (data.getDescription() != null) auditParams.put("description", data.getDescription()); + IAuthToken authToken = (IAuthToken) + SessionContext.getContext().get(SessionContext.AUTH_TOKEN); + try { ICertificateAuthority subCA = hostCA.createCA( - principal.getAuthToken(), - data.getDN(), parentAID, data.getDescription()); + authToken, data.getDN(), parentAID, data.getDescription()); audit(ILogger.SUCCESS, OpDef.OP_ADD, subCA.getAuthorityID().toString(), auditParams); return createOKResponse(readAuthorityData(subCA)); |