summaryrefslogtreecommitdiffstats
path: root/base/server/cms/src
Commit message (Collapse)AuthorAgeFilesLines
* Refactored SystemConfigService (part 4).Endi S. Dewata2014-04-251-11/+14
| | | | | | Some methods have been renamed for clarity. Ticket #890
* Refactored SystemConfigService (part 3).Endi S. Dewata2014-04-251-90/+107
| | | | | | | Some additional codes in SystemConfigService.configure() have been moved into separate methods. Ticket #890
* Refactored SystemConfigService (part 2).Endi S. Dewata2014-04-251-178/+205
| | | | | | | | In this patch the code that processes the certificate list has been moved into a new processCerts() method. Some variables have been renamed and some cleanup has been done for clarity. Ticket #890
* Refactored SystemConfigService (part 1).Endi S. Dewata2014-04-251-45/+44
| | | | | | | | | | | | | | This series of patches will incrementally refactor the SystemConfigService to make it more manageable, which will help development and troubleshooting, and also to resolve potential dependency issues on subsystem-specific installation procedures. This patch converts the code that handles the certificate list to use to Collection framework and to avoid duplicate parsing. It also contains some code cleanup. Ticket #890
* Reorganized TPS installer classes.Endi S. Dewata2014-04-253-461/+0
| | | | | | | | Some TPS-specific installation wizard panels have been moved from the common server package into the TPS package. The build script has been fixed accordingly. Ticket #890
* Added group members table in TPS UI.Endi S. Dewata2014-04-221-9/+2
| | | | | | | | | | A new table has been added to the group page in TPS UI for managing the group members. The addGroupMember() method in group REST interface has been fixed to accept JSON request properly. Ticket #654
* Fixed user's name in TPS UI.Endi S. Dewata2014-04-213-6/+33
| | | | | | | | | | | | | | | | Previously the user's name displayed in the top right corner of the TPS UI was hardcoded to Administrator. It has been fixed to display the full name of the authenticated user obtained from the server. The login() method in the account REST service has been modified to return the account information about the user and the roles in which the user belongs. This information can later be used to further customize the behavior of the UI based on the authorization data. The PKIRealm has been modified to store the authenticated user info in the PKI principal. Ticket #654
* Fixed missing Accept header handling.Endi S. Dewata2014-04-152-13/+41
| | | | | | | Some clients might not send the Accept header when invoking the REST services. To handle this the REST services have been modified to use the Content-type if the Accept header is missing, or use a default message format if Content-type is not specified.
* Added enable/disable functionality for TPS audit.Endi S. Dewata2014-04-151-5/+34
| | | | | | | | | A new method has been added to TPS audit REST service to enable or disable audit logging. The CLI and UI have been modified to provide a way to acces this functionality. Also, new ACL entries have been added for audit. Ticket #955
* trac ticket #888 part2 CA/KRA functions - TPS rewrite: provide remote ↵Christina Fu2014-04-095-46/+100
| | | | authority functions
* Fix crash when key size not set for key archivalAde Lee2014-04-091-1/+2
|
* Added audit page.Endi S. Dewata2014-04-081-20/+62
| | | | | | | | | | A new page has been added to the TPS UI to manage audit configuration. The audit REST service has been modified to use PATCH like the other services. The audit events will now have 3 possible values: mandatory, enabled, disabled. Mandatory events cannot be edited. Optional events can be edited in edit mode. Ticket #654
* Share subsystem cert in shared tomcat instancesAde Lee2014-03-312-15/+67
| | | | | | | | | | In shared tomcat instances, we need to share the subsystem cert and not create a new one for each additional subsystem added to the instance. In addition, if the instances share the same database, then only one pkidbuser should be created with the relevant subsystem cert and seeAlso attribute. Ticket 893
* Refactoring KeyClient class and crypto classes.Abhishek Koneru2014-03-311-1/+1
|
* Sign CA clone sslserver certificate using CA master.Matthew Harmsen2014-03-201-2/+64
| | | | | * Dogtag TRAC Ticket #816 - pki-tomcat cannot be started after installation of ipa replica with ca
* Changes to KeyClient on the java side.Abhishek Koneru2014-03-192-7/+4
| | | | | The KeyClient class on the java side is modified to have a similar design as the KeyClient class on the python side.
* Added search filter for TPS resources.Endi S. Dewata2014-03-193-6/+27
| | | | | | | | | | | | | | | | | | The TPS resources have been modified to accept a basic search filter for find operation. For resources based on LDAP database, the filtering is done using LDAP filter. For other resources, the filtering is done using string comparison. For now the filter is will only be matched against entry IDs. In the future the filter may be expanded to support other entry attributes. The CLI has been updated accordingly. The total attribute in DataCollection was changed from Integer into int because the total size of the collection cannot be null. The PKIException constructors have been consolidated into a single actual constructor. The other constructors have been modified to call the actual constructor with some default values. Ticket #847
* Ticket #888 - (part 1: TKS) TPS rewrite: provide remote authority functionsChristina Fu2014-03-172-48/+111
|
* Removed redundant GenericServlet.destroy() invocation.Endi S. Dewata2014-03-171-1/+0
| | | | | | | | The CMSStartServlet has been modified to remove the code that calls GenericServlet.destroy() because it is an empty default implementation which was intended to provide convenience for writing servlets. Ticket #896
* Direct deployment for TPS.Endi S. Dewata2014-03-071-7/+24
| | | | | | | | | | | | | | | | | | | The deployment tool has been modified to deploy TPS directly from the share folder. This way the TPS UI can be upgraded automatically with RPM upgrade without having to write upgrade scripts. For this to work, the TPS web application files cannot contain any slot parameters. So, the cfgPath parameter has been removed from web.xml, and the CMSStartServlet has been modified such that if the parameter is missing it would generate a default path matching the original value in web.xml. Also, the velocity.properties has been modified to use a fixed value for the file.resource.loader.path parameter pointing to the share folder. In the future other subsystems may be modified to use the same deployment mechanism. Ticket #748, #752, #499
* trac ticket #862 - TPS rewrite: provide connector service for JAVA-based TPS ↵Christina Fu2014-03-061-0/+11
| | | | subsystem
* Added CLI parameter to select message format.Endi S. Dewata2014-03-042-0/+118
| | | | | | | | | | | A new CLI parameter has been added to allow the user select the REST message format. This is done by setting the default consumes and produces when creating the client proxy. For this to work the hard-coded @Consumes and @Produces annotations need to be removed from the interface definition. A new interceptor has been added to validate the message format before executing the operation. Ticket #554
* Reorganized REST service classes.Endi S. Dewata2014-02-2820-3742/+399
| | | | | | | | The REST service classes have been moved into org.dogtagpki.server namespace. A new upgrade script has been added to update existing instances. Ticket #114
* Upgraded RESTEasy client library.Endi S. Dewata2014-02-273-15/+52
| | | | | | | | | | The Dogtag client library has been modified to use RESTEasy 3.0 client library. A new upgrade script has been added to update existing servers. The JAXB annotation in ResourceMessage has been modified to require explicit property mapping. Ticket #554
* Add ability to archive without sending pkiArchiveOptions object.Ade Lee2014-02-262-4/+31
| | | | | | With this patch, you can now either send a pkiArchiveOptions object or the exploded parameters. This reduces the processing required on the client side.
* Added error checking in python client callsAde Lee2014-02-261-6/+23
| | | | | | | | | 1) Added error checking in python client calls. 2) Allow symmetric key generation with default params. Fix bug for when usages is not defined. 3) Fix bug when requesting key recovery - must check if key exists. 4) Extend key gen to allow for providing trans_wrapped_session_key 5) added constants to python client for key status
* reame client_id to client_key_idAde Lee2014-02-263-35/+35
|
* Add methods to getKeyInfo and change key statusAde Lee2014-02-191-0/+41
|
* Refactored GroupMemberProcessor.Endi S. Dewata2014-02-192-7/+5
| | | | | | | | The GroupMemberProcessor.addGroupMember() has been modified such that it returns the newly created group member data. This way the GroupService can use the common method to create the response object. Ticket #554
* Updated REST interface for key requests.Endi S. Dewata2014-02-191-7/+13
| | | | | | | The REST interface for key requests has been modified to return Response objects to allow better handling of server responses. Ticket #554
* Updated REST interface for keys.Endi S. Dewata2014-02-192-16/+45
| | | | | | | | | The REST interface for keys has been modified to return Response objects to allow better handling of server responses. Key-related methods in KRAClient have been moved into KeyClient. The DRMTest has been updated accordingly. Ticket #554
* Updated REST interface for CA profiles.Endi S. Dewata2014-02-191-14/+16
| | | | | | | The REST interface for CA profiles has been modified to return Response objects to allow better handling of server responses. Ticket #554
* Fix eclipse warnings.Ade Lee2014-02-194-26/+19
|
* Updated REST interface for TPS connectors.Endi S. Dewata2014-02-181-31/+50
| | | | | | | The REST interface for TPS connectors has been modified to return Response objects to allow better handling of server responses. Ticket #554
* Updated REST interface for account.Endi S. Dewata2014-02-181-3/+8
| | | | | | | The REST interface for account has been modified to return Response objects to allow better handling of server responses. Ticket #554
* Updated REST interface for groups.Endi S. Dewata2014-02-181-19/+21
| | | | | | | The REST interface for groups has been modified to return Response objects to allow better handling of server responses. Ticket #554
* Updated REST interface for certificate requests.Endi S. Dewata2014-02-181-21/+29
| | | | | | | The REST interface for certificate requests has been modified to return Response objects to allow better handling of server responses. Ticket #554
* Updated REST interface for certificates.Endi S. Dewata2014-02-181-18/+22
| | | | | | | The REST interface for certificates has been modified to return Response objects to allow better handling of server responses. Ticket #554
* Updated REST interface for users.Endi S. Dewata2014-02-182-36/+59
| | | | | | | | | | The REST interface for users has been modified to return Response objects to allow better handling of server responses. Other REST interfaces will be modified in subsequent patches. Once all interfaces are updated, the client library can be updated to use RESTEasy 3.0 API. Clients using the client library or XML/JSON directly are not affected by these changes. Ticket #554
* Removed hard-coded response type.Endi S. Dewata2014-02-106-22/+1
| | | | | | | | Previously some methods were hard-coded to return XML responses. The code has been removed to allow clients to request a different format. Ticket #554
* Fix minor issues from review.Ade Lee2014-02-102-17/+21
| | | | | | 1. Use size/keySize consistently, instead of strength. 2. Change to using Integer instead of int in SymKeyGenerationRequest. 3. Fix error message.
* Change the return type for KeyRequest creation operationsAde Lee2014-02-102-25/+47
| | | | | | We will likely want to extend the REST API to allow the immediate return of a generated key, and perhaps of a recovered key in a single step. This change allows us to do that.
* Add strength and algorithm to KeyData and KeyInfo classesAde Lee2014-02-102-9/+29
| | | | | | Make sure these are updated so that clients can get this information when accessing a symmetric key. Also allow a default for generation requests (but not for archival requests).
* Fix DRM archival, recovery and generation for non-DES3 keys.Ade Lee2014-02-042-6/+36
| | | | | | | | | | | In the archival, recovery and generation code for symmetric keys, we use functions that require knowledge of the symmetric keys algorithm and key size. These were hardcoded to DES3, and so only DES3 worked. We added those parameters to the archival request, save them in the KeyRecord and retrive them when recovering the key. Tests have been added to DRMTest for the relevant usages.
* Address review commentsAde Lee2014-02-043-8/+25
| | | | | | | | | 1. Remove Link attribute from ResourceMessage, 2. Rename KeyDataInfo and KeyDataInfoCollection. 3. Move KEYGEN_ALGORITHMS 4. Fix missing space in PKIException 5. Move properties to attributes in ResourceMessage 6. Add missing code to update the request and set IRequest.RESULT
* Rename KeyRequest to ResourceMessageAde Lee2014-02-041-14/+22
| | | | | | Refactor ResourceMessage to include classname instead of Request Type. Also changed PKIException.Data to extend ResourceMessage. Modifications to the server code to get the tests working.
* Added more client code for DRM testsAde Lee2014-02-042-24/+18
|
* Rename KeyDataInfos and KeyrequestInfosAde Lee2014-02-043-9/+9
|
* Fix some errors flagged by eclipseAde Lee2014-02-041-2/+2
|
* Added SymKeyGen serviceAde Lee2014-02-042-2/+81
|
generated by cgit (git 2.34.1) at 2026-03-18 06:57:53 +0000