diff options
author | Endi S. Dewata <edewata@redhat.com> | 2015-05-21 23:48:41 -0400 |
---|---|---|
committer | Endi S. Dewata <edewata@redhat.com> | 2015-05-22 18:17:33 -0400 |
commit | e7c6b5ea5a109da2a2385aeb616825082c2ddd60 (patch) | |
tree | 93e71ff4657842cdc01bfa2aac3498b379176e06 /base/server/cms/src/com/netscape/cms | |
parent | 8c2fb0b89be2216f91d9e250850a27e40e4dbd7f (diff) | |
download | pki-e7c6b5ea5a109da2a2385aeb616825082c2ddd60.tar.gz pki-e7c6b5ea5a109da2a2385aeb616825082c2ddd60.tar.xz pki-e7c6b5ea5a109da2a2385aeb616825082c2ddd60.zip |
Fixed key archival problem in CLI with separate KRA instance.
The CLI has been modified such that when enrolling a certificate
with key archival it will obtain the transport certificate from
the CA instead of KRA because the KRA may not reside on the same
instance. The CA REST service has been modified such that it will
obtain the transport certificate from the KRA connector.
https://fedorahosted.org/pki/ticket/1384
Diffstat (limited to 'base/server/cms/src/com/netscape/cms')
-rw-r--r-- | base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java | 37 |
1 files changed, 13 insertions, 24 deletions
diff --git a/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java b/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java index 2fe78bf2a..4ebf075cb 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java +++ b/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java @@ -19,14 +19,13 @@ package com.netscape.cms.servlet.base; import java.lang.reflect.Method; import java.net.URI; -import java.security.Principal; -import java.security.cert.CertificateEncodingException; import java.util.Arrays; import java.util.HashMap; import java.util.List; import java.util.Locale; import java.util.Map; +import javax.servlet.http.HttpServletRequest; import javax.ws.rs.FormParam; import javax.ws.rs.core.CacheControl; import javax.ws.rs.core.Context; @@ -36,11 +35,10 @@ import javax.ws.rs.core.MediaType; import javax.ws.rs.core.Request; import javax.ws.rs.core.Response; import javax.ws.rs.core.Response.ResponseBuilder; +import javax.ws.rs.core.UriInfo; import com.netscape.certsrv.apps.CMS; import com.netscape.certsrv.base.PKIException; -import com.netscape.certsrv.cert.CertData; -import com.netscape.certsrv.dbs.certdb.CertId; import com.netscape.certsrv.logging.IAuditor; import com.netscape.certsrv.logging.ILogger; @@ -65,7 +63,17 @@ public class PKIService { public final static int DEFAULT_SIZE = 20; @Context - private HttpHeaders headers; + protected UriInfo uriInfo; + + @Context + protected HttpHeaders headers; + + @Context + protected Request request; + + @Context + protected HttpServletRequest servletRequest; + public ILogger logger = CMS.getLogger(); public IAuditor auditor = CMS.getAuditor(); @@ -169,25 +177,6 @@ public class PKIService { return builder.build(); } - public CertData createCertificateData(org.mozilla.jss.crypto.X509Certificate cert) - throws CertificateEncodingException { - - CertData data = new CertData(); - - data.setSerialNumber(new CertId(cert.getSerialNumber())); - - Principal issuerDN = cert.getIssuerDN(); - if (issuerDN != null) data.setIssuerDN(issuerDN.toString()); - - Principal subjectDN = cert.getSubjectDN(); - if (subjectDN != null) data.setSubjectDN(subjectDN.toString()); - - String b64 = CertData.HEADER + "\n" + CMS.BtoA(cert.getEncoded()) + CertData.FOOTER; - data.setEncoded(b64); - - return data; - } - public Locale getLocale(HttpHeaders headers) { if (headers == null) return Locale.getDefault(); |