summaryrefslogtreecommitdiffstats
path: root/base/common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java
diff options
context:
space:
mode:
Diffstat (limited to 'base/common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java')
-rw-r--r--base/common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java269
1 files changed, 1 insertions, 268 deletions
diff --git a/base/common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java b/base/common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java
index 273e33173..4fe641240 100644
--- a/base/common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java
+++ b/base/common/src/com/netscape/cms/servlet/csadmin/WizardPanelBase.java
@@ -20,31 +20,22 @@ package com.netscape.cms.servlet.csadmin;
import java.io.ByteArrayInputStream;
import java.io.IOException;
import java.net.URLEncoder;
-import java.security.cert.CertificateEncodingException;
import java.util.Locale;
import javax.servlet.ServletConfig;
import javax.servlet.ServletException;
import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpServletResponse;
-import javax.xml.parsers.ParserConfigurationException;
import org.apache.velocity.context.Context;
import org.mozilla.jss.ssl.SSLCertificateApprovalCallback;
-import org.w3c.dom.Document;
-import org.w3c.dom.Element;
-import org.w3c.dom.Node;
-import org.w3c.dom.NodeList;
-import org.xml.sax.SAXException;
import com.netscape.certsrv.apps.CMS;
-import com.netscape.certsrv.base.EBaseException;
import com.netscape.certsrv.base.IConfigStore;
import com.netscape.certsrv.property.PropertySet;
import com.netscape.cms.servlet.base.UserInfo;
import com.netscape.cms.servlet.wizard.IWizardPanel;
import com.netscape.cms.servlet.wizard.WizardServlet;
-import com.netscape.cmsutil.crypto.CryptoUtil;
import com.netscape.cmsutil.xml.XMLObject;
public class WizardPanelBase implements IWizardPanel {
@@ -214,239 +205,6 @@ public class WizardPanelBase implements IWizardPanel {
return locale;
}
- public int getSubsystemCount(String hostname, int https_admin_port,
- boolean https, String type) throws IOException, SAXException, ParserConfigurationException {
- CMS.debug("WizardPanelBase getSubsystemCount start");
- String c = ConfigurationUtils.getDomainXML(hostname, https_admin_port, true);
- if (c != null) {
- ByteArrayInputStream bis = new ByteArrayInputStream(c.getBytes());
- XMLObject obj = new XMLObject(bis);
- String containerName = type + "List";
- Node n = obj.getContainer(containerName);
- NodeList nlist = n.getChildNodes();
- String countS = "";
- for (int i = 0; i < nlist.getLength(); i++) {
- Element nn = (Element) nlist.item(i);
- String tagname = nn.getTagName();
- if (tagname.equals("SubsystemCount")) {
- NodeList nlist1 = nn.getChildNodes();
- Node nn1 = nlist1.item(0);
- countS = nn1.getNodeValue();
- break;
- }
- }
- CMS.debug("WizardPanelBase getSubsystemCount: SubsystemCount=" + countS);
- int num = 0;
-
- if (countS != null && !countS.equals("")) {
- try {
- num = Integer.parseInt(countS);
- } catch (Exception ee) {
- }
- }
-
- return num;
- }
- return -1;
- }
-
- public String getCertChainUsingSecureEEPort(String hostname,
- int https_ee_port,
- boolean https,
- ConfigCertApprovalCallback
- certApprovalCallback)
- throws IOException {
- CMS.debug("WizardPanelBase getCertChainUsingSecureEEPort start");
- String c = ConfigurationUtils.getHttpResponse(hostname, https_ee_port, https,
- "/ca/ee/ca/getCertChain", null, null,
- certApprovalCallback);
-
- if (c != null) {
- try {
- ByteArrayInputStream bis = new ByteArrayInputStream(c.getBytes());
- XMLObject parser = null;
-
- try {
- parser = new XMLObject(bis);
- } catch (Exception e) {
- CMS.debug("WizardPanelBase::getCertChainUsingSecureEEPort() - "
- + "Exception=" + e.toString());
- throw new IOException(e.toString());
- }
-
- String status = parser.getValue("Status");
-
- CMS.debug("WizardPanelBase getCertChainUsingSecureEEPort: status=" + status);
-
- if (status.equals(SUCCESS)) {
- String certchain = parser.getValue("ChainBase64");
-
- certchain = CryptoUtil.normalizeCertStr(certchain);
- CMS.debug(
- "WizardPanelBase getCertChainUsingSecureEEPort: certchain="
- + certchain);
- return certchain;
- } else {
- String error = parser.getValue("Error");
-
- throw new IOException(error);
- }
- } catch (IOException e) {
- CMS.debug("WizardPanelBase: getCertChainUsingSecureEEPort: " + e.toString());
- throw e;
- } catch (Exception e) {
- CMS.debug("WizardPanelBase: getCertChainUsingSecureEEPort: " + e.toString());
- throw new IOException(e.toString());
- }
- }
-
- return null;
- }
-
- public boolean updateConfigEntries(String hostname, int port, boolean https,
- String servlet, String uri, IConfigStore config,
- HttpServletResponse response) throws IOException {
- CMS.debug("WizardPanelBase updateConfigEntries start");
- String c = ConfigurationUtils.getHttpResponse(hostname, port, https, servlet, uri, null);
-
- if (c != null) {
- try {
- ByteArrayInputStream bis = new ByteArrayInputStream(c.getBytes());
- XMLObject parser = null;
-
- try {
- parser = new XMLObject(bis);
- } catch (Exception e) {
- CMS.debug("WizardPanelBase::updateConfigEntries() - "
- + "Exception=" + e.toString());
- throw new IOException(e.toString());
- }
-
- String status = parser.getValue("Status");
-
- CMS.debug("WizardPanelBase updateConfigEntries: status=" + status);
-
- if (status.equals(SUCCESS)) {
- String cstype = "";
- try {
- cstype = config.getString("cs.type", "");
- } catch (Exception e) {
- CMS.debug("WizardPanelBase::updateConfigEntries() - unable to get cs.type: " + e.toString());
- }
-
- Document doc = parser.getDocument();
- NodeList list = doc.getElementsByTagName("name");
- int len = list.getLength();
- for (int i = 0; i < len; i++) {
- Node n = list.item(i);
- NodeList nn = n.getChildNodes();
- String name = nn.item(0).getNodeValue();
- Node parent = n.getParentNode();
- nn = parent.getChildNodes();
- int len1 = nn.getLength();
- String v = "";
- for (int j = 0; j < len1; j++) {
- Node nv = nn.item(j);
- String val = nv.getNodeName();
- if (val.equals("value")) {
- NodeList n2 = nv.getChildNodes();
- if (n2.getLength() > 0)
- v = n2.item(0).getNodeValue();
- break;
- }
- }
-
- if (name.equals("internaldb.basedn")) {
- config.putString(name, v);
- config.putString("preop.internaldb.master.basedn", v);
- } else if (name.startsWith("internaldb")) {
- config.putString(name.replaceFirst("internaldb", "preop.internaldb.master"), v);
- } else if (name.equals("instanceId")) {
- config.putString("preop.master.instanceId", v);
- } else if (name.equals("cloning.cert.signing.nickname")) {
- config.putString("preop.master.signing.nickname", v);
- config.putString("preop.cert.signing.nickname", v);
- } else if (name.equals("cloning.ocsp_signing.nickname")) {
- config.putString("preop.master.ocsp_signing.nickname", v);
- config.putString("preop.cert.ocsp_signing.nickname", v);
- } else if (name.equals("cloning.subsystem.nickname")) {
- config.putString("preop.master.subsystem.nickname", v);
- config.putString("preop.cert.subsystem.nickname", v);
- } else if (name.equals("cloning.transport.nickname")) {
- config.putString("preop.master.transport.nickname", v);
- config.putString("kra.transportUnit.nickName", v);
- config.putString("preop.cert.transport.nickname", v);
- } else if (name.equals("cloning.storage.nickname")) {
- config.putString("preop.master.storage.nickname", v);
- config.putString("kra.storageUnit.nickName", v);
- config.putString("preop.cert.storage.nickname", v);
- } else if (name.equals("cloning.audit_signing.nickname")) {
- config.putString("preop.master.audit_signing.nickname", v);
- config.putString("preop.cert.audit_signing.nickname", v);
- config.putString(name, v);
- } else if (name.startsWith("cloning.ca")) {
- config.putString(name.replaceFirst("cloning", "preop"), v);
- } else if (name.equals("cloning.signing.keyalgorithm")) {
- config.putString(name.replaceFirst("cloning", "preop.cert"), v);
- if (cstype.equals("CA")) {
- config.putString("ca.crl.MasterCRL.signingAlgorithm", v);
- config.putString("ca.signing.defaultSigningAlgorithm", v);
- } else if (cstype.equals("OCSP")) {
- config.putString("ocsp.signing.defaultSigningAlgorithm", v);
- }
- } else if (name.equals("cloning.transport.keyalgorithm")) {
- config.putString(name.replaceFirst("cloning", "preop.cert"), v);
- config.putString("kra.transportUnit.signingAlgorithm", v);
- } else if (name.equals("cloning.ocsp_signing.keyalgorithm")) {
- config.putString(name.replaceFirst("cloning", "preop.cert"), v);
- if (cstype.equals("CA")) {
- config.putString("ca.ocsp_signing.defaultSigningAlgorithm", v);
- }
- } else if (name.startsWith("cloning")) {
- config.putString(name.replaceFirst("cloning", "preop.cert"), v);
- } else {
- config.putString(name, v);
- }
- }
-
- // set master ldap password (if it exists) temporarily in password store
- // in case it is needed for replication. Not stored in password.conf.
- try {
- String master_pwd = config.getString("preop.internaldb.master.ldapauth.password", "");
- if (!master_pwd.equals("")) {
- config.putString("preop.internaldb.master.ldapauth.bindPWPrompt", "master_internaldb");
- String passwordFile = config.getString("passwordFile");
- IConfigStore psStore = CMS.createFileConfigStore(passwordFile);
- psStore.putString("master_internaldb", master_pwd);
- psStore.commit(false);
- }
- } catch (Exception e) {
- CMS.debug("updateConfigEntries: Failed to temporarily store master bindpwd: " + e.toString());
- e.printStackTrace();
- throw new IOException(e.toString());
- }
-
- return true;
- } else if (status.equals(AUTH_FAILURE)) {
- reloginSecurityDomain(response);
- return false;
- } else {
- String error = parser.getValue("Error");
-
- throw new IOException(error);
- }
- } catch (IOException e) {
- CMS.debug("WizardPanelBase: updateConfigEntries: " + e.toString());
- throw e;
- } catch (Exception e) {
- CMS.debug("WizardPanelBase: updateConfigEntries: " + e.toString());
- throw new IOException(e.toString());
- }
- }
-
- return false;
- }
-
public boolean authenticate(String hostname, int port, boolean https,
String servlet, String uri) throws IOException {
CMS.debug("WizardPanelBase authenticate start");
@@ -497,8 +255,7 @@ public class WizardPanelBase implements IWizardPanel {
if (c != null) {
try {
- ByteArrayInputStream bis = new
- ByteArrayInputStream(c.getBytes());
+ ByteArrayInputStream bis = new ByteArrayInputStream(c.getBytes());
XMLObject parser = null;
String state = null;
@@ -526,30 +283,6 @@ public class WizardPanelBase implements IWizardPanel {
return null;
}
- public void updateCertChainUsingSecureEEPort(IConfigStore config, String name, String host,
- int https_ee_port, boolean https, Context context, ConfigCertApprovalCallback certApprovalCallback)
- throws IOException, CertificateEncodingException, EBaseException {
- String certchain = getCertChainUsingSecureEEPort(host, https_ee_port, https, certApprovalCallback);
- config.putString("preop." + name + ".pkcs7", certchain);
-
- byte[] decoded = CryptoUtil.base64Decode(certchain);
- java.security.cert.X509Certificate[] b_certchain = CryptoUtil.getX509CertificateFromPKCS7(decoded);
-
- int size = 0;
- if (b_certchain != null) {
- size = b_certchain.length;
- }
- config.putInteger("preop." + name + ".certchain.size", size);
-
- for (int i = 0; i < size; i++) {
- byte[] bb = b_certchain[i].getEncoded();
- config.putString("preop." + name + ".certchain." + i,
- CryptoUtil.normalizeCertStr(CryptoUtil.base64Encode(bb)));
- }
-
- config.commit(false);
- }
-
public void reloginSecurityDomain(HttpServletResponse response) {
IConfigStore cs = CMS.getConfigStore();
try {
generated by cgit (git 2.34.1) at 2024-05-12 04:06:39 +0000