diff options
author | Endi Sukma Dewata <edewata@redhat.com> | 2012-03-24 02:27:47 -0500 |
---|---|---|
committer | Endi Sukma Dewata <edewata@redhat.com> | 2012-03-26 11:43:54 -0500 |
commit | 621d9e5c413e561293d7484b93882d985b3fe15f (patch) | |
tree | 638f3d75761c121d9a8fb50b52a12a6686c5ac5c /pki/base/common/src/com/netscape/cms/servlet/csadmin/UpdateNumberRange.java | |
parent | 40d3643b8d91886bf210aa27f711731c81a11e49 (diff) | |
download | pki-621d9e5c413e561293d7484b93882d985b3fe15f.tar.gz pki-621d9e5c413e561293d7484b93882d985b3fe15f.tar.xz pki-621d9e5c413e561293d7484b93882d985b3fe15f.zip |
Removed unnecessary pki folder.
Previously the source code was located inside a pki folder.
This folder was created during svn migration and is no longer
needed. This folder has now been removed and the contents have
been moved up one level.
Ticket #131
Diffstat (limited to 'pki/base/common/src/com/netscape/cms/servlet/csadmin/UpdateNumberRange.java')
-rw-r--r-- | pki/base/common/src/com/netscape/cms/servlet/csadmin/UpdateNumberRange.java | 290 |
1 files changed, 0 insertions, 290 deletions
diff --git a/pki/base/common/src/com/netscape/cms/servlet/csadmin/UpdateNumberRange.java b/pki/base/common/src/com/netscape/cms/servlet/csadmin/UpdateNumberRange.java deleted file mode 100644 index 894afa5ff..000000000 --- a/pki/base/common/src/com/netscape/cms/servlet/csadmin/UpdateNumberRange.java +++ /dev/null @@ -1,290 +0,0 @@ -// --- BEGIN COPYRIGHT BLOCK --- -// This program is free software; you can redistribute it and/or modify -// it under the terms of the GNU General Public License as published by -// the Free Software Foundation; version 2 of the License. -// -// This program is distributed in the hope that it will be useful, -// but WITHOUT ANY WARRANTY; without even the implied warranty of -// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the -// GNU General Public License for more details. -// -// You should have received a copy of the GNU General Public License along -// with this program; if not, write to the Free Software Foundation, Inc., -// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. -// -// (C) 2007 Red Hat, Inc. -// All rights reserved. -// --- END COPYRIGHT BLOCK --- -package com.netscape.cms.servlet.csadmin; - -import java.io.IOException; -import java.math.BigInteger; -import java.util.Locale; - -import javax.servlet.ServletConfig; -import javax.servlet.ServletException; -import javax.servlet.http.HttpServletRequest; -import javax.servlet.http.HttpServletResponse; - -import org.w3c.dom.Node; - -import com.netscape.certsrv.apps.CMS; -import com.netscape.certsrv.authentication.IAuthToken; -import com.netscape.certsrv.authorization.AuthzToken; -import com.netscape.certsrv.authorization.EAuthzAccessDenied; -import com.netscape.certsrv.base.EBaseException; -import com.netscape.certsrv.base.IConfigStore; -import com.netscape.certsrv.ca.ICertificateAuthority; -import com.netscape.certsrv.dbs.repository.IRepository; -import com.netscape.certsrv.kra.IKeyRecoveryAuthority; -import com.netscape.certsrv.logging.ILogger; -import com.netscape.cms.servlet.base.CMSServlet; -import com.netscape.cms.servlet.base.UserInfo; -import com.netscape.cms.servlet.common.CMSRequest; -import com.netscape.cms.servlet.common.ICMSTemplateFiller; -import com.netscape.cmsutil.xml.XMLObject; - -public class UpdateNumberRange extends CMSServlet { - - /** - * - */ - private static final long serialVersionUID = -1584171713024263331L; - private final static String SUCCESS = "0"; - private final static String FAILED = "1"; - private final static String AUTH_FAILURE = "2"; - private final static String LOGGING_SIGNED_AUDIT_CONFIG_SERIAL_NUMBER = - "LOGGING_SIGNED_AUDIT_CONFIG_SERIAL_NUMBER_1"; - - public UpdateNumberRange() { - super(); - } - - /** - * initialize the servlet. - * - * @param sc servlet configuration, read from the web.xml file - */ - public void init(ServletConfig sc) throws ServletException { - CMS.debug("UpdateNumberRange: initializing..."); - super.init(sc); - CMS.debug("UpdateNumberRange: done initializing..."); - } - - /** - * Process the HTTP request. - * <ul> - * <li>http.param op 'downloadBIN' - return the binary certificate chain - * <li>http.param op 'displayIND' - display pretty-print of certificate chain components - * </ul> - * - * @param cmsReq the object holding the request and response information - */ - protected void process(CMSRequest cmsReq) throws EBaseException { - CMS.debug("UpdateNumberRange: processing..."); - - HttpServletRequest httpReq = cmsReq.getHttpReq(); - HttpServletResponse httpResp = cmsReq.getHttpResp(); - - CMS.debug("UpdateNumberRange process: authentication starts"); - IAuthToken authToken = authenticate(cmsReq); - if (authToken == null) { - CMS.debug("UpdateNumberRange process: authToken is null"); - outputError(httpResp, AUTH_FAILURE, "Error: not authenticated"); - } - - AuthzToken authzToken = null; - - try { - authzToken = authorize(mAclMethod, authToken, mAuthzResourceName, - "modify"); - } catch (EAuthzAccessDenied e) { - log(ILogger.LL_FAILURE, - CMS.getLogMessage("ADMIN_SRVLT_AUTH_FAILURE", e.toString())); - outputError(httpResp, "Error: Not authorized"); - return; - } catch (Exception e) { - log(ILogger.LL_FAILURE, - CMS.getLogMessage("ADMIN_SRVLT_AUTH_FAILURE", e.toString())); - outputError(httpResp, - "Error: Encountered problem during authorization."); - return; - } - if (authzToken == null) { - outputError(httpResp, "Error: Not authorized"); - return; - } - - String auditMessage = null; - String auditSubjectID = auditSubjectID(); - String auditParams = "source;;updateNumberRange"; - - try { - String type = httpReq.getParameter("type"); - IConfigStore cs = CMS.getConfigStore(); - String cstype = cs.getString("cs.type", ""); - - auditParams += "+type;;" + type; - - BigInteger beginNum = null; - BigInteger endNum = null; - BigInteger oneNum = new BigInteger("1"); - String endNumConfig = null; - String cloneNumConfig = null; - String nextEndConfig = null; - int radix = 10; - - IRepository repo = null; - if (cstype.equals("KRA")) { - IKeyRecoveryAuthority kra = (IKeyRecoveryAuthority) CMS.getSubsystem( - IKeyRecoveryAuthority.ID); - if (type.equals("request")) { - repo = kra.getRequestQueue().getRequestRepository(); - } else if (type.equals("serialNo")) { - repo = kra.getKeyRepository(); - } else if (type.equals("replicaId")) { - repo = kra.getReplicaRepository(); - } - } else { // CA - ICertificateAuthority ca = (ICertificateAuthority) CMS.getSubsystem( - ICertificateAuthority.ID); - if (type.equals("request")) { - repo = ca.getRequestQueue().getRequestRepository(); - } else if (type.equals("serialNo")) { - repo = ca.getCertificateRepository(); - } else if (type.equals("replicaId")) { - repo = ca.getReplicaRepository(); - } - } - - // checkRanges for replicaID - we do this each time a replica is created. - // This needs to be done beforehand to ensure that we always have enough - // replica numbers - if (type.equals("replicaId")) { - CMS.debug("Checking replica number ranges"); - repo.checkRanges(); - } - - if (type.equals("request")) { - radix = 10; - endNumConfig = "dbs.endRequestNumber"; - cloneNumConfig = "dbs.requestCloneTransferNumber"; - nextEndConfig = "dbs.nextEndRequestNumber"; - } else if (type.equals("serialNo")) { - radix = 16; - endNumConfig = "dbs.endSerialNumber"; - cloneNumConfig = "dbs.serialCloneTransferNumber"; - nextEndConfig = "dbs.nextEndSerialNumber"; - } else if (type.equals("replicaId")) { - radix = 10; - endNumConfig = "dbs.endReplicaNumber"; - cloneNumConfig = "dbs.replicaCloneTransferNumber"; - nextEndConfig = "dbs.nextEndReplicaNumber"; - } - - String endNumStr = cs.getString(endNumConfig, ""); - endNum = new BigInteger(endNumStr, radix); - String decrementStr = cs.getString(cloneNumConfig, ""); - BigInteger decrement = new BigInteger(decrementStr, radix); - beginNum = endNum.subtract(decrement).add(oneNum); - - if (beginNum.compareTo(repo.getTheSerialNumber()) < 0) { - String nextEndNumStr = cs.getString(nextEndConfig, ""); - BigInteger endNum2 = new BigInteger(nextEndNumStr, radix); - CMS.debug("Transferring from the end of on-deck range"); - String newValStr = endNum2.subtract(decrement).toString(radix); - repo.setNextMaxSerial(newValStr); - cs.putString(nextEndConfig, newValStr); - beginNum = endNum2.subtract(decrement).add(oneNum); - endNum = endNum2; - } else { - CMS.debug("Transferring from the end of the current range"); - String newValStr = beginNum.subtract(oneNum).toString(radix); - repo.setMaxSerial(newValStr); - cs.putString(endNumConfig, newValStr); - } - - if (beginNum == null) { - CMS.debug("UpdateNumberRange::process() - " + - "beginNum is null!"); - auditMessage = CMS.getLogMessage( - LOGGING_SIGNED_AUDIT_CONFIG_SERIAL_NUMBER, - auditSubjectID, - ILogger.FAILURE, - auditParams); - audit(auditMessage); - return; - } - - // Enable serial number management in master for certs and requests - if (type.equals("replicaId")) { - repo.setEnableSerialMgmt(true); - } - - // insert info - CMS.debug("UpdateNumberRange: Sending response"); - - // send success status back to the requestor - XMLObject xmlObj = new XMLObject(); - Node root = xmlObj.createRoot("XMLResponse"); - - xmlObj.addItemToContainer(root, "Status", SUCCESS); - xmlObj.addItemToContainer(root, "beginNumber", beginNum.toString(radix)); - xmlObj.addItemToContainer(root, "endNumber", endNum.toString(radix)); - byte[] cb = xmlObj.toByteArray(); - - outputResult(httpResp, "application/xml", cb); - cs.commit(false); - - auditParams += "+beginNumber;;" + beginNum.toString(radix) + - "+endNumber;;" + endNum.toString(radix); - - auditMessage = CMS.getLogMessage( - LOGGING_SIGNED_AUDIT_CONFIG_SERIAL_NUMBER, - auditSubjectID, - ILogger.SUCCESS, - auditParams); - audit(auditMessage); - - } catch (Exception e) { - CMS.debug("UpdateNumberRange: Failed to update number range. Exception: " + e.toString()); - - auditMessage = CMS.getLogMessage( - LOGGING_SIGNED_AUDIT_CONFIG_SERIAL_NUMBER, - auditSubjectID, - ILogger.FAILURE, - auditParams); - audit(auditMessage); - - outputError(httpResp, "Error: Failed to update number range."); - } - } - - protected void setDefaultTemplates(ServletConfig sc) { - } - - protected void renderTemplate( - CMSRequest cmsReq, String templateName, ICMSTemplateFiller filler) - throws IOException {// do nothing - } - - protected void renderResult(CMSRequest cmsReq) throws IOException {// do nothing, ie, it will not return the default javascript. - } - - /** - * Retrieves locale based on the request. - */ - protected Locale getLocale(HttpServletRequest req) { - Locale locale = null; - String lang = req.getHeader("accept-language"); - - if (lang == null) { - // use server locale - locale = Locale.getDefault(); - } else { - locale = new Locale(UserInfo.getUserLanguage(lang), - UserInfo.getUserCountry(lang)); - } - return locale; - } -} |