diff options
Diffstat (limited to 'base/ra/apache/docroot/agent')
19 files changed, 1999 insertions, 0 deletions
diff --git a/base/ra/apache/docroot/agent/cert/index.cgi b/base/ra/apache/docroot/agent/cert/index.cgi new file mode 100755 index 000000000..46e5b8c2c --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/index.cgi @@ -0,0 +1,119 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use DBI; +use CGI; +use Template::Velocity; +use PKI::RA::GlobalVar; +use PKI::Base::Conf; +use PKI::Base::Util; +use PKI::Base::Registry; +use PKI::Base::CertStore; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + my @roles = $self->get_current_roles($cfg); + my $r = join(",",@roles); + + my $sp = $util->get_alphanum_val($q->param('sp')); + if ($sp eq "") { + $sp = "0"; + } + $context{sp} = $sp; + my $mc = $util->get_alphanum_val($q->param('mc')); + if ($mc eq "") { + $mc = "20"; + } + $context{mc} = $mc; + $context{pp} = $sp - $mc; # previous pos (for paging) + $context{np} = $sp + $mc; # next pos (for paging) + + my $cs = PKI::Base::CertStore->new(); + $cs->open($cfg); + my @certs = $cs->list_certs_by_approver($uid, $sp, $mc); + $cs->close(); + + my @r; + my $i = 0; + foreach my $cert (@certs) { + $r[$i] = new PKI::RA::GlobalVar( + getReqId => sub { return $util->html_encode($cert->{'rid'}) }, + getSerialno => sub { return $util->html_encode($cert->{'serialno'}) }, + getSubjectDN => sub { return $util->html_encode($cert->{'subject_dn'}) }, + getCertificate => sub { return $util->html_encode($cert->{'certificate'}) }, + getApprovedBy => sub { return $util->html_encode($cert->{'approved_by'}) }, + getCreatedAt => sub { return $util->html_encode($cert->{'created_at'}); }, + ); + $i++; + } + $context{rows} = \@r; + + my $result = $parser->execute_file_with_context("agent/cert/index.vm", + \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/cert/index.vm b/base/ra/apache/docroot/agent/cert/index.vm new file mode 100644 index 000000000..f9229b0f9 --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/index.vm @@ -0,0 +1,86 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>RA Agent</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +<a href="/agent/index.cgi">Agent Interface</a> +<br>List Certificates Approved by: $uid +</font><br> +<p> +<center> +<table border="1" cellspacing="1" cellpadding="1"> +<tr valign="TOP"> +<td><b>Serial#</b></td> +<td><b>Request ID</b></td> +<td><b>Subject DN</b></td> +<td><b>Approved By</b></td> +<td><b>Created At</b></td> +</tr> +#foreach($r in $rows) +<tr valign="TOP"> +<td><a href="read.cgi?serialno=$r.getSerialno()">$r.getSerialno()</a></td> +<td><a href="/agent/request/read.cgi?id=$r.getReqId()">$r.getReqId()</a></td> +<td>$r.getSubjectDN()</td> +<td>$r.getApprovedBy()</td> +<td>$r.getCreatedAt()</td> +</tr> +#end +</table> +</center> +<p> +<a href="index.cgi?sp=$pp&mc=$mc">Previous</a> | <a href="index.cgi?sp=$np&mc=$mc">Next</a> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/cert/read.cgi b/base/ra/apache/docroot/agent/cert/read.cgi new file mode 100755 index 000000000..f434baedb --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/read.cgi @@ -0,0 +1,104 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use DBI; +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::Util; +use PKI::Base::Registry; +use PKI::Conn::CA; +use Encode; +use vars qw (@ISA); +use PKI::Service::Op; + +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + my $serialno = $util->get_alphanum_val($q->param('serialno')); + + my $cs = PKI::Base::CertStore->new(); + $cs->open($cfg); + my $ref = $cs->read_certificate_by_approver($uid, $serialno); + $cs->close(); + + my $ca = PKI::Conn::CA->new(); + $ca->open($cfg); + my $certStatus = $ca->getCertStatus("ca1", $serialno); + $ca->close(); + + + $context{certificate} = $util->breakline($util->html_encode($ref->{'certificate'}), 40); + + $context{serialno} = $util->html_encode($ref->{'serialno'}); + $context{subject_dn} = $util->html_encode(Encode::decode('UTF-8', $ref->{'subject_dn'})); + $context{created_at} = $util->html_encode($ref->{'created_at'}); + $context{approved_by} = $util->html_encode($ref->{'approved_by'}); + $context{rid} = $util->html_encode($ref->{'rid'}); + $context{certStatus} = $util->html_encode($certStatus); + + my $result = $parser->execute_file_with_context("agent/cert/read.vm", + \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/cert/read.vm b/base/ra/apache/docroot/agent/cert/read.vm new file mode 100644 index 000000000..43c78ffa4 --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/read.vm @@ -0,0 +1,96 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>Certificates</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +<a href="/agent/index.cgi">Agent Interface</a> +<br>Certificate Information +</font><br> +<p> +</font> +<center> +<table border="1" cellspacing="1" cellpadding="1"> +<tr valign="TOP"> +<td><b>Serial Number</b></td> +<td><a href="read.cgi?serialno=$serialno">$serialno</a></td> +</tr> +<tr valign="TOP"> +<td><b>Subject DN</b></td> +<td>$subject_dn</td> +</tr> +<tr valign="TOP"> +<td><b>Certificate</b></td> +<td>$certificate</td> +</tr> +<tr valign="TOP"> +<td><b>Approved By</b></td> +<td>$approved_by</td> +</tr> +<tr valign="TOP"> +<td><b>Created At</b></td> +<td>$created_at</td> +</tr> +<tr valign="TOP"> +<td><b>Revocation Status</b></td> +<td>$certStatus</td> +</tr> +</table> +</center> +<br/> +<a href="/agent/cert/revoke.cgi?rid=$rid&serialno=$serialno&subject_dn=$subject_dn">Revoke</a> +<br/> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/cert/revoke.cgi b/base/ra/apache/docroot/agent/cert/revoke.cgi new file mode 100755 index 000000000..1e483aea0 --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/revoke.cgi @@ -0,0 +1,89 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use DBI; +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::Registry; +use PKI::Base::Util; +use Encode; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + my $serialno = $util->get_alphanum_val($q->param('serialno')); + my $subject_dn = $util->get_val($q->param('subject_dn')); + my $rid = $util->get_alphanum_val($q->param('rid')); + + $context{serialno} = $util->html_encode($serialno); + $context{subject_dn} = $util->html_encode(Encode::decode('UTF-8',$subject_dn)); + $context{rid} = $util->html_encode($rid); + + my $result = $parser->execute_file_with_context("agent/cert/revoke.vm", + \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/cert/revoke.vm b/base/ra/apache/docroot/agent/cert/revoke.vm new file mode 100644 index 000000000..626bbed42 --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/revoke.vm @@ -0,0 +1,111 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>Certificate Revocation</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +<a href="/agent/index.cgi">Agent Interface</a> +<br>Revoking Certificate: +</font><br> +<p> +</font> +<center> +<table border="0" cellspacing="1" cellpadding="1"> +<tr valign="TOP"> +<td><b>Serial Number:</b></td> +<td>$serialno</td> +</tr> +<tr valign="TOP"> +<td><b>Subject DN:</b></td> +<td>$subject_dn</td> +</tr> +</table> +<br> +<b>Select A Reason:</b> +</br> +<table> +<form name=reason_form method=post action=submit.cgi> +<input type=hidden name=serialno value="$serialno"> +<input type=hidden name=subject_dn value="$subject_dn"> +<input type=hidden name=rid value="$rid"> +<tr> +<td><input checked type=radio name="reason" value="0">Unspecified</td> +</tr> +<tr> +<td><input type=radio name="reason" value="1">Key compromised</td> +</tr> +<tr> +<td><input type=radio name="reason" value="2">CA key compromised</td> +</tr> +<tr> +<td><input type=radio name="reason" value="3">Affiliation changed</td> +</tr> +<tr> +<td><input type=radio name="reason" value="4">Certificate superseded</td> +</tr> +<tr> +<td><input type=radio name="reason" value="5">Cessation of operation</td> +</tr> +<tr> +<td><input type=radio name="reason" value="6">Certificate is on hold</td> +</tr> +</form> +</table> +</center> +<br/> +<a href="#" onclick="document.reason_form.submit();">Submit</a> +<br/> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/cert/submit.cgi b/base/ra/apache/docroot/agent/cert/submit.cgi new file mode 100755 index 000000000..571385f3a --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/submit.cgi @@ -0,0 +1,104 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use DBI; +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::Util; +use PKI::Base::Registry; +use PKI::Conn::CA; +use Encode; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + my $serialno = $util->get_alphanum_val($q->param('serialno')); + my $subject_dn = $util->get_val($q->param('subject_dn')); + my $reason = $util->get_alphanum_val($q->param('reason')); + my $rid = $util->get_alphanum_val($q->param('rid')); + + my $ca = PKI::Conn::CA->new(); + $ca->open($cfg); + $ca->revoke($rid, "ca1", $serialno, $reason); + $ca->close(); + + my $queue = PKI::Request::Queue->new(); + $queue->open($cfg); + + my $ref = $queue->read_request($rid); + $context{errorString} = $util->html_encode($ref->{'errorString'}); + $queue->close(); + + $context{rid} = $util->html_encode($rid); + $context{serialno} = $util->html_encode($serialno); + $context{subject_dn} = $util->html_encode(Encode::decode('UTF-8', $subject_dn)); + + my $result = $parser->execute_file_with_context("agent/cert/submit.vm", + \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/cert/submit.vm b/base/ra/apache/docroot/agent/cert/submit.vm new file mode 100644 index 000000000..730228715 --- /dev/null +++ b/base/ra/apache/docroot/agent/cert/submit.vm @@ -0,0 +1,91 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>Certificate Revocation Submission</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +<a href="/agent/index.cgi">Agent Interface</a> +<br>Revocation of Certificate: +</font><br> +<p> +</font> +<center> +<table border="0" cellspacing="1" cellpadding="1"> +<tr valign="TOP"> +<td><b>Serial Number:</b></td> +<td>$serialno</td> +</tr> +<tr valign="TOP"> +<td><b>Subject DN:</b></td> +<td>$subject_dn</td> +</tr> +<tr> +<td><b>Result:</b></td> +#if ($errorString == "0") +<td>Revoked</td> +#else +<td>Failed: $errorString</td> +#end +</tr> +<tr> +<td><b>Request ID:</b></td> +<td><a href="/agent/request/read.cgi?id=$rid">$rid</a></td> +</tr> +</table> +<br> +</center> +<br/> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/error.cgi b/base/ra/apache/docroot/agent/error.cgi new file mode 100755 index 000000000..fa13365a7 --- /dev/null +++ b/base/ra/apache/docroot/agent/error.cgi @@ -0,0 +1,81 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::UserStore; +use PKI::Base::Util; +use PKI::Base::Registry; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + + my $q = CGI->new(); + + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + my $util = PKI::Base::Util->new(); + + my $error = $util->get_val($q->param('error')); + + my %context; + if ($error ne "") { + $context{has_error} = 1; + $context{'error'} = $util->html_encode($error); + } + + my $result = $parser->execute_file_with_context("agent/error.vm", \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/error.vm b/base/ra/apache/docroot/agent/error.vm new file mode 100644 index 000000000..dbe65cb58 --- /dev/null +++ b/base/ra/apache/docroot/agent/error.vm @@ -0,0 +1,72 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>RA Agent Error!</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> + - +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +Agent Interface +</font><br> +<p> +</font> +<p> +<center> +You are not authorized to access the requested page. +<br> +#if ($has_error) + Error: $error +#end +</center> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/index.cgi b/base/ra/apache/docroot/agent/index.cgi new file mode 100755 index 000000000..c8f2040fe --- /dev/null +++ b/base/ra/apache/docroot/agent/index.cgi @@ -0,0 +1,83 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::UserStore; +use PKI::Base::Registry; +use PKI::Base::Util; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi?error=Authentication%20Error"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + my $result = $parser->execute_file_with_context("agent/index.vm", + \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/index.vm b/base/ra/apache/docroot/agent/index.vm new file mode 100644 index 000000000..5bd952ba2 --- /dev/null +++ b/base/ra/apache/docroot/agent/index.vm @@ -0,0 +1,81 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>RA Agent</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +RA Agent Services +</font><br> +<p> +<center> +<table border="0" cellspacing="0" cellpadding="0"> +<tr valign="TOP"> +<td> +<font size=4 face="PrimaSans BT, Verdana, sans-serif"> +<li><a href="/agent/request/index.cgi">List Requests</a></li> +</font> +</td> +</tr> +<tr valign="TOP"> +<td> +<font size=4 face="PrimaSans BT, Verdana, sans-serif"> +<li><a href="/agent/cert/index.cgi">List Certificates</a></li> +</font> +</td> +</tr> +</table> +</center> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/request/add_note.cgi b/base/ra/apache/docroot/agent/request/add_note.cgi new file mode 100755 index 000000000..0ffac91c7 --- /dev/null +++ b/base/ra/apache/docroot/agent/request/add_note.cgi @@ -0,0 +1,93 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::Util; +use PKI::Base::Registry; +use PKI::Request::Queue; +use PKI::Base::TimeTool; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + my $id = $util->get_alphanum_val($q->param('id')); + my $note = $util->get_val($q->param('note')); + + if ($note eq "") { + # dont add anything + print $q->redirect("/agent/request/read.cgi?id=" . $id); + return; + } + + my $timet = PKI::Base::TimeTool->new(); + my $now = $timet->get_time(); + my $new_note = "==== Note created by $uid at $now ====\n" . + $note . "\n"; + + my $queue = PKI::Request::Queue->new(); + $queue->open($cfg); + my $ref = $queue->read_request($id); + $queue->set_request($id, "note", $ref->{'note'} . $new_note); + $queue->close(); + + print $q->redirect("/agent/request/read.cgi?id=" . $id); +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/request/index.cgi b/base/ra/apache/docroot/agent/request/index.cgi new file mode 100755 index 000000000..81b25977a --- /dev/null +++ b/base/ra/apache/docroot/agent/request/index.cgi @@ -0,0 +1,146 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use DBI; +use CGI; +use Template::Velocity; +use PKI::RA::GlobalVar; +use PKI::Base::Conf; +use PKI::Base::Util; +use PKI::Base::Registry; +use PKI::Request::Queue; +use PKI::Service::Op; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + $self->debug_log( $cfg, "in request/index.cgi, uid == $uid"); + + my %context; + $context{uid} = $util->html_encode($uid); + + my @roles = $self->get_current_roles($cfg); +# my $r = join(",",@roles); + + my $status = $util->get_alphanum_val($q->param('status')); + if ($status eq "") { + $context{status} = ""; + } else { + $context{status} = $util->html_encode($status); + } + + my $sp = $util->get_alphanum_val($q->param('sp')); + if ($sp eq "") { + $sp = "0"; + } + $context{sp} = $sp; + my $mc = $util->get_alphanum_val($q->param('mc')); + if ($mc eq "") { + $mc = "20"; + } + $context{mc} = $mc; + $context{pp} = $sp - $mc; # previous pos (for paging) + $context{np} = $sp + $mc; # next pos (for paging) + + my $queue = PKI::Request::Queue->new(); + $queue->open($cfg); + my $total = $queue->count_requests_by_roles(\@roles, $status); + $context{total} = $util->html_encode($total); + + my @reqs = $queue->list_requests_by_roles(\@roles, $status, $sp, $mc); +# my @reqs = $queue->list_requests_by_roles($r, $status, $sp, $mc); + $queue->close(); + + my @r; + my $i = 0; + foreach my $req (@reqs) { + $r[$i] = new PKI::RA::GlobalVar( + getId => sub { return $util->html_encode($req->{'rowid'}) }, + getType => sub { return $util->html_encode($req->{'type'}) }, + getStatus => sub { return $util->html_encode($req->{'status'}) }, + getError => sub { return $util->html_encode($req->{'errorString'}) }, + getAssignedTo => sub { return $util->html_encode($req->{'assigned_to'}) }, + getData => sub { return $util->html_encode($req->{'data'}); }, + getCreatedBy => sub { return $util->html_encode($req->{'created_by'}); }, + getCreatedAt => sub { return $util->html_encode($req->{'created_at'}); }, + ); + $i++; + } + $context{rows} = \@r; + + if ($sp - $mc < 0) { + $context{show_previous} = "no"; + } else { + $context{show_previous} = "yes"; + } + + if ($i < 20) { + $context{show_next} = "no"; + } else { + $context{show_next} = "yes"; + } + + my $result = $parser->execute_file_with_context("agent/request/index.vm", + \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/request/index.vm b/base/ra/apache/docroot/agent/request/index.vm new file mode 100644 index 000000000..dd9901fdb --- /dev/null +++ b/base/ra/apache/docroot/agent/request/index.vm @@ -0,0 +1,95 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>RA Agent</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +<a href="/agent/index.cgi">Agent Interface</a> +</font><br> +<p> +<a href="index.cgi">All</a> | <a href="index.cgi?status=OPEN">OPEN</a> | <a href="index.cgi?status=APPROVED">APPROVED</a> | <a href="index.cgi?status=REJECTED">REJECTED</a> | <a href="index.cgi?status=ERROR">FAILED</a> +<p> +<center> +<table border="1" cellspacing="1" cellpadding="1"> +<tr valign="TOP"> +<td><b>Id</b></td> +<td><b>Type</b></td> +<td><b>Status</b></td> +<td><b>Assigned To</b></td> +<td><b>Created By</b></td> +<td><b>Created At</b></td> +<td><b>Error</b></td> +</tr> +#foreach($r in $rows) +<tr valign="TOP"> +<td><a href="read.cgi?id=$r.getId()">$r.getId()</a></td> +<td>$r.getType()</td> +<td>$r.getStatus()</td> +<td>$r.getAssignedTo()</td> +<td>$r.getCreatedBy()</td> +<td>$r.getCreatedAt()</td> +<td>$r.getError()</td> +</tr> +#end +</table> +</center> +<p> +Total: $total +<br/> +<br/> +<a href="index.cgi?status=$status&sp=$pp&mc=$mc">Previous</a> | +<a href="index.cgi?status=$status&sp=$np&mc=$mc">Next</a> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/request/op.cgi b/base/ra/apache/docroot/agent/request/op.cgi new file mode 100755 index 000000000..363d7121b --- /dev/null +++ b/base/ra/apache/docroot/agent/request/op.cgi @@ -0,0 +1,153 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use Benchmark; +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::Registry; +use PKI::Request::Queue; +use PKI::Base::Util; +use Encode; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + + my $q = CGI->new(); + + my $st = new Benchmark; + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + my $type = $util->get_alphanum_val($q->param('type')); + my $id = $util->get_alphanum_val($q->param('id')); + + my $db_st = new Benchmark; + my $queue = PKI::Request::Queue->new(); + $queue->open($cfg); + + my $ref; + + my @roles = $self->get_current_roles($cfg); + my $pref = $queue->read_request_by_roles(\@roles, $id); + + if (! defined $pref) { + $queue->close(); + $self->debug_log($cfg, "Invalid attempt to process request id= " . $id . + " by userid= " . $uid); + print $q->redirect("/agent/error.cgi"); + return; + } + + my $curr_status = $pref->{'status'}; + if ($type eq "approve") { + if (($curr_status ne "OPEN") && ($curr_status ne "ERROR")) { + $queue->close(); + print $q->redirect("/agent/request/read.cgi?id=$id"); + return; + } + + $ref = $queue->approve_request($id, $uid); + } elsif ($type eq "reject") { + if (($curr_status ne "OPEN") && ($curr_status ne "ERROR")) { + $queue->close(); + print $q->redirect("/agent/request/read.cgi?id=$id"); + return; + } + + $ref = $queue->reject_request($id, $uid); + } + $queue->close(); + my $db_et = new Benchmark; + + $context{data} = $util->breakline($util->html_encode(Encode::decode('UTF-8', $ref->{'data'})), 40); + $context{output} = $util->breakline($util->html_encode($ref->{'output'}), 40); + $context{serialno} = $util->html_encode($ref->{'serialno'}); + $context{type} = $util->html_encode($ref->{'type'}); + $context{ip} = $util->html_encode($ref->{'ip'}); + $context{note} = $util->html_encode($ref->{'note'}); + $context{note} =~ s/\n/<br\/>/g; + $context{created_at} = $util->html_encode($ref->{'created_at'}); + $context{updated_at} = $util->html_encode($ref->{'updated_at'}); + $context{assigned_to} = $util->html_encode($ref->{'assigned_to'}); + $context{processed_by} = $util->html_encode($ref->{'processed_by'}); + $context{created_by} = $util->html_encode($ref->{'created_by'}); + $context{status} = $util->html_encode($ref->{'status'}); + $context{errorString} = $util->html_encode($ref->{'errorString'}); + $context{id} = $util->html_encode($ref->{'rowid'}); + + my $t_st = new Benchmark; + my $result = $parser->execute_file_with_context("agent/request/op.vm", + \%context); + my $t_et = new Benchmark; + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } + + my $et = new Benchmark; + + $self->debug_log($cfg, "benchmark " . + "total=" . timestr(timediff($et, $st)) . " " . + "db total=" . timestr(timediff($db_et, $db_st)) . " " . + "template total=" . timestr(timediff($t_et, $t_st)) . " " + ); +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/request/op.vm b/base/ra/apache/docroot/agent/request/op.vm new file mode 100644 index 000000000..d5bc2dfe4 --- /dev/null +++ b/base/ra/apache/docroot/agent/request/op.vm @@ -0,0 +1,127 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>Certificate Request Operations</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +<a href="/agent/index.cgi">Agent Interface</a> +</font><br> +<p> +<a href="index.cgi">All</a> | <a href="index.cgi?status=OPEN">OPEN</a> | <a href="index.cgi?status=APPROVED">APPROVED</a> | <a href="index.cgi?status=REJECTED">REJECTED</a> | <a href="index.cgi?status=ERROR">FAILED</a> +<p> +<center> +<table border="1" cellspacing="1" cellpadding="1"> +<tr valign="TOP"> +<td><b>Request Id</b></td> +<td><a href="read.cgi?id=$id">$id</a></td> +</tr> +<tr valign="TOP"> +<td><b>Type</b></td> +<td>$type</td> +</tr> +<tr valign="TOP"> +<td><b>Data</b></td> +<td>$data</td> +</tr> +<tr valign="TOP"> +<td><b>Output</b></td> +<td>$output</td> +</tr> +<tr valign="TOP"> +<td><b>Serial Number</b></td> +<td>$serialno</td> +</tr> +<tr valign="TOP"> +<td><b>Status</b></td> +<td>$status</td> +</tr> +<tr valign="TOP"> +<td><b>Error</b></td> +<td>$errorString</td> +</tr> +<tr valign="TOP"> +<td><b>Assigned To</b></td> +<td>$assigned_to</td> +</tr> +<tr valign="TOP"> +<td><b>Created By</b></td> +<td>$created_by</td> +</tr> +<tr valign="TOP"> +<td><b>Updated At</b></td> +<td>$updated_at</td> +</tr> +<tr valign="TOP"> +<td><b>Processed By</b></td> +<td>$processed_by</td> +</tr> +<tr valign="TOP"> +<td><b>Created At</b></td> +<td>$created_at</td> +</tr> +<tr valign="TOP"> +<td><b>IP</b></td> +<td>$ip</td> +</tr> +<tr valign="TOP"> +<td><b>Note</b></td> +<td>$note</td> +</tr> +</table> +</center> + +<br/> +#include ( "footer.vm" ) + +</body> +</html> diff --git a/base/ra/apache/docroot/agent/request/read.cgi b/base/ra/apache/docroot/agent/request/read.cgi new file mode 100755 index 000000000..d1633c164 --- /dev/null +++ b/base/ra/apache/docroot/agent/request/read.cgi @@ -0,0 +1,119 @@ +#!/usr/bin/perl +# +# --- BEGIN COPYRIGHT BLOCK --- +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; version 2 of the License. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# +# You should have received a copy of the GNU General Public License along +# with this program; if not, write to the Free Software Foundation, Inc., +# 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. +# +# Copyright (C) 2007 Red Hat, Inc. +# All rights reserved. +# --- END COPYRIGHT BLOCK --- +# +# +# +# + +package op; + +use lib $ENV{DOCUMENT_ROOT} . "/../lib/perl"; + +use DBI; +use CGI; +use Template::Velocity; +use PKI::Base::Conf; +use PKI::Base::Registry; +use PKI::Base::Util; +use PKI::Request::Queue; +use Encode; + +use vars qw (@ISA); +use PKI::Service::Op; +@ISA = qw(PKI::Service::Op); + +sub new { + my $self = {}; + bless ($self); + return $self; +} + +sub process() +{ + my $self = shift; + my $q = CGI->new(); + + my $util = PKI::Base::Util->new(); + my $docroot = PKI::Base::Registry->get_docroot(); + my $parser = PKI::Base::Registry->get_parser(); + my $cfg = PKI::Base::Registry->get_config(); + + $self->debug_params($cfg, $q); + + if (!$self->agent_auth($cfg)) { + print $q->redirect("/agent/error.cgi"); + return; + } + my $uid = $self->get_current_uid($cfg); + + my %context; + $context{uid} = $util->html_encode($uid); + + + my @roles = $self->get_current_roles($cfg); +# my $r = join(",",@roles); + + my $id = $util->get_alphanum_val($q->param('id')); + + my $queue = PKI::Request::Queue->new(); + $queue->open($cfg); + my $ref = $queue->read_request_by_roles(\@roles, $id); + $queue->close(); + + $context{data} = $util->breakline($util->html_encode(Encode::decode('UTF-8',$ref->{'data'})), 40); + $context{output} = $util->breakline($util->html_encode($ref->{'output'}), 40); + $context{meta_info} = $util->breakline($util->html_encode($ref->{'meta_info'}), 40); + + $context{serialno} = $util->html_encode($ref->{'serialno'}); + $context{subject_dn} = $util->html_encode($ref->{'subject_dn'}); + $context{type} = $util->html_encode($ref->{'type'}); + $context{created_at} = $util->html_encode($ref->{'created_at'}); + $context{created_by} = $util->html_encode($ref->{'created_by'}); + $context{updated_at} = $util->html_encode($ref->{'updated_at'}); + $context{ip} = $util->html_encode($ref->{'ip'}); + $context{processed_by} = $util->html_encode($ref->{'processed_by'}); + $context{note} = $util->html_encode($ref->{'note'}); + $context{note} =~ s/\n/<br\/>/g; + $context{assigned_to} = $util->html_encode($ref->{'assigned_to'}); + $context{status} = $util->html_encode($ref->{'status'}); + if ($ref->{'status'} eq "OPEN") { + $context{is_open} = 1; + } + if ($ref->{'status'} eq "ERROR") { + $context{is_error} = 1; + } + $context{errorString} = $util->html_encode($ref->{'errorString'}); + $context{id} = $util->html_encode($ref->{'rowid'}); + + my $result = $parser->execute_file_with_context("agent/request/read.vm", + \%context); + + my $xml = $q->param('xml'); + if ($xml eq "true") { + print "Content-Type: text/xml\n\n"; + print $self->xml_output(\%context); + } else { + print "Content-Type: text/html\n\n"; + print "$result"; + } +} + +my $op = op->new(); +$op->execute(); diff --git a/base/ra/apache/docroot/agent/request/read.vm b/base/ra/apache/docroot/agent/request/read.vm new file mode 100644 index 000000000..c583be021 --- /dev/null +++ b/base/ra/apache/docroot/agent/request/read.vm @@ -0,0 +1,149 @@ +<!-- --- BEGIN COPYRIGHT BLOCK --- + This program is free software; you can redistribute it and/or modify + it under the terms of the GNU General Public License as published by + the Free Software Foundation; version 2 of the License. + + This program is distributed in the hope that it will be useful, + but WITHOUT ANY WARRANTY; without even the implied warranty of + MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + GNU General Public License for more details. + + You should have received a copy of the GNU General Public License along + with this program; if not, write to the Free Software Foundation, Inc., + 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. + + Copyright (C) 2007 Red Hat, Inc. + All rights reserved. + --- END COPYRIGHT BLOCK --- --> +<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd"> +<html> + +<title>Certificate Requests</title> + <link rel="shortcut icon" href="/pki/images/favicon.ico" /> + <link rel="stylesheet" href="/pki/css/pki-base.css" type="text/css" /> + <META http-equiv=Content-Type content="text/html; charset=UTF-8"> + +</head> +<body bgcolor="#FFFFFF" link="#666699" vlink="#666699" alink="#333366"> + +#include ( "header.vm" ) + +<div id="mainNavOuter"> +<div id="mainNav"> +<div id="mainNavInner"> + +</div><!-- end mainNavInner --> +</div><!-- end mainNav --> +</div><!-- end mainNavOuter --> + + +<div id="bar"> + +<div id="systembar"> +<div id="systembarinner"> + +<div> +UID: $uid +</div> + + +</div> +</div> + +</div> + + +<font size="+1" face="PrimaSans BT, Verdana, Arial, Helvetica, sans-serif"> +<a href="/agent/index.cgi">Agent Interface</a> +</font><br> +<p> +<a href="index.cgi">All</a> | <a href="index.cgi?status=OPEN">OPEN</a> | <a href="index.cgi?status=APPROVED">APPROVED</a> | <a href="index.cgi?status=REJECTED">REJECTED</a>| <a href="index.cgi?status=ERROR">FAILED</a> +<p> +<center> +<table border="1" cellspacing="1" cellpadding="1"> +<tr valign="TOP"> +<td><b>Request Id</b></td> +<td><a href="read.cgi?id=$id">$id</a></td> +</tr> +<tr valign="TOP"> +<td><b>Type</b></td> +<td>$type</td> +</tr> +<tr valign="TOP"> +<td><b>Data</b></td> +<td>$data</td> +</tr> +<tr valign="TOP"> +<td><b>Output</b></td> +<td>$output</td> +</tr> +<tr valign="TOP"> +<td><b>Serial Number</b></td> +#if ($serialno == "unavailable") +<td>$serialno</td> +#else +<td><a href="/agent/cert/read.cgi?serialno=$serialno">$serialno</a></td> +#end +</tr> +<tr valign="TOP"> +<td><b>Subject DN</b></td> +<td>$subject_dn</td> +</tr> +<tr valign="TOP"> +<td><b>Meta Info</b></td> +<td>$meta_info</td> +</tr> +<tr valign="TOP"> +<td><b>Status</b></td> +<td>$status</td> +</tr> +<tr valign="TOP"> +<td><b>Error</b></td> +<td>$errorString</td> +</tr> +<tr valign="TOP"> +<td><b>Assigned To</b></td> +<td>$assigned_to</td> +</tr> +<tr valign="TOP"> +<td><b>Created By</b></td> +<td>$created_by</td> +</tr> +<tr valign="TOP"> +<td><b>Updated At</b></td> +<td>$updated_at</td> +</tr> +<tr valign="TOP"> +<td><b>Processed By</b></td> +<td>$processed_by</td> +</tr> +<tr valign="TOP"> +<td><b>Created At</b></td> +<td>$created_at</td> +</tr> +<tr valign="TOP"> +<td><b>IP</b></td> +<td>$ip</td> +</tr> +<tr valign="TOP"> +<td><b>Note</b></td> +<td>$note</td> +</tr> +</table> +</center> +<br/> +#if ($is_open || $is_error) +<a href="op.cgi?type=approve&id=$id">Approve</a> | <a href="op.cgi?type=reject&id=$id">Reject</a> +<br/> +<br/> +#end +<form name=note_form method=post action=add_note.cgi> +<input type=hidden name=id value="$id"> +<textarea name=note> +</textarea> +</form> +<a href="#" onclick="document.note_form.submit();">Add Note</a> +#include ( "footer.vm" ) + +</body> +</html> |