summaryrefslogtreecommitdiffstats
path: root/base/common/src/com/netscape/certsrv/user
Commit message (Collapse)AuthorAgeFilesLines
* Added authentication method validation.ticket-477-7Endi Sukma Dewata2013-02-183-0/+6
| | | | | | | | | | | | | | | A new mechanism has been added to specify the authentication methods that can be used to invoke the REST methods. The AuthMethodMapping annotation maps each REST method to a list of allowed authentication methods. When a client calls a REST method, the AuthMethodInterceptor will intercept the call and verify that the client uses an allowed authentication method. Most REST methods that require authentication have been configured to require client certificate authentication. Authentication using username and password will only be used to get the installation token from security domain. Ticket #477
* Added CLI to manage user membership.Endi Sukma Dewata2013-02-184-0/+260
| | | | | | | | New CLI's have been added to search, add, and remove user membership. The group member management code has been refactored into a processor to allow reuse. Ticket #190
* Added ACLInterceptor.Endi Sukma Dewata2012-11-082-0/+6
| | | | | | | | | Previously ACL checking was done in PKIRealm by matching the URL. This code has been replaced by ACLInterceptor which will intercept RESTEasy method invocations. This allows more precise mapping of REST methods to ACL entries in acl.ldif. Ticket #287
* Added PKIConnection.Endi Sukma Dewata2012-10-181-0/+9
| | | | | | | | | The code in PKIClient has been refactored into PKIConnection such that a single connection object can be used by several REST clients. The PKIClient will remain the base class for all REST clients. Ticket #357
* Moved REST CLI into pki-tools.Endi Sukma Dewata2012-08-291-0/+83
| | | | | | | | | | The pki-client.jar has been split and merged into pki-certsrv.jar and pki-tools.jar. The REST client classes are now packaged in com.netscape.certsrv.<component> packages. The REST CLI classes are now packaged in com.netscape.cmstools.<component> packages. The "pki" script has been moved into pki-tools RPM package. Ticket #215
* Moved REST services into separate URLs.Endi Sukma Dewata2012-08-032-7/+7
| | | | | | | | | | | To support different access control configurations the REST services have been separated by roles. Services that don't need authentication will be available under /rest. Services that require agent rights will be available under /rest/agent. Services that require admin rights will be available under /rest/admin. Ticket #107
* Added cert revocation REST service.Endi Sukma Dewata2012-07-111-6/+9
| | | | | | | The cert revocation REST service is based on DoRevoke and DoUnrevoke servlets. It provides an interface to manage certificate revocation. Ticket #161
* Added user REST service.Endi Sukma Dewata2012-05-316-0/+750
The user REST service is based on UsrGrpAdminServlet. It provides an interface to manage users and user certificates. Ticket #160
generated by cgit (git 2.34.1) at 2024-06-07 01:32:09 +0000