summaryrefslogtreecommitdiffstats
path: root/base/common/src/com/netscape/cms/servlet/processors/Processor.java
Commit message (Collapse)AuthorAgeFilesLines
* Added CLI to manage user membership.Endi Sukma Dewata2013-02-181-0/+49
| | | | | | | | New CLI's have been added to search, add, and remove user membership. The group member management code has been refactored into a processor to allow reuse. Ticket #190
* Session-based nonces.Endi Sukma Dewata2013-02-041-6/+29
| | | | | | | | | | | | | | | | | | | | | | | Previously nonces were stored in a global map which might not scale well due to some issues: 1. The map uses the nonces as map keys. There were possible nonce collisions which required special handling. 2. The collision handling code was not thread safe. There were possible race conditions during concurrent modifications. 3. The map was shared and size limited. If there were a lot of users using the system, valid nonces could get pruned. 4. The map maps the nonces to client certificates. This limits the possible authentication methods that can be supported. Now the code has been modified such that each user has a private map in the user's session to store the nonces. Additional locking has been implemented to protect against concurrent modifications. The map now uses the target of the operation as the map key, eliminating possible collisions and allowing the use of other authentication methods. Since this is a private map, it's not affected by the number of users using the system. Ticket #474
* Added nonce validation for certificate revocation.Endi Sukma Dewata2013-01-151-0/+2
| | | | | | | The certificate REST service has been modified to validate nonce when revoking a certificate. Ticket #213
* Removed duplicate DN escaping methods.Endi Sukma Dewata2012-09-191-39/+0
| | | | | | | | The duplicate methods to escape DN value have been removed. The codes that used the duplicate methods have been modified to use LDAPUtil.escapeDN(). Ticket #193
* Added cert revocation REST service.Endi Sukma Dewata2012-07-111-1/+19
| | | | | | | The cert revocation REST service is based on DoRevoke and DoUnrevoke servlets. It provides an interface to manage certificate revocation. Ticket #161
* Adding restful interface to create certificate requests and issue certificates.Ade Lee2012-07-031-0/+1259
Refactored ProfileSubmitServlet to make the flow clearer. Both the legacy servlets and the new RESTful servlets use common ProfileProcessor objects that contain the main business logic, so that the amount of duplicated code is minimized. Refactored ProfileProcessServlet to use the new common classes. Addressed review comments. Removed an unneeded class and reverted some unneeded jaxb annotations. Added factory methods.
generated by cgit (git 2.34.1) at 2024-05-13 11:50:50 +0000