From e7c6b5ea5a109da2a2385aeb616825082c2ddd60 Mon Sep 17 00:00:00 2001 From: "Endi S. Dewata" Date: Thu, 21 May 2015 23:48:41 -0400 Subject: Fixed key archival problem in CLI with separate KRA instance. The CLI has been modified such that when enrolling a certificate with key archival it will obtain the transport certificate from the CA instead of KRA because the KRA may not reside on the same instance. The CA REST service has been modified such that it will obtain the transport certificate from the KRA connector. https://fedorahosted.org/pki/ticket/1384 --- .../com/netscape/cms/servlet/base/PKIService.java | 37 ++++++++-------------- 1 file changed, 13 insertions(+), 24 deletions(-) (limited to 'base/server/cms/src/com') diff --git a/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java b/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java index 2fe78bf2a..4ebf075cb 100644 --- a/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java +++ b/base/server/cms/src/com/netscape/cms/servlet/base/PKIService.java @@ -19,14 +19,13 @@ package com.netscape.cms.servlet.base; import java.lang.reflect.Method; import java.net.URI; -import java.security.Principal; -import java.security.cert.CertificateEncodingException; import java.util.Arrays; import java.util.HashMap; import java.util.List; import java.util.Locale; import java.util.Map; +import javax.servlet.http.HttpServletRequest; import javax.ws.rs.FormParam; import javax.ws.rs.core.CacheControl; import javax.ws.rs.core.Context; @@ -36,11 +35,10 @@ import javax.ws.rs.core.MediaType; import javax.ws.rs.core.Request; import javax.ws.rs.core.Response; import javax.ws.rs.core.Response.ResponseBuilder; +import javax.ws.rs.core.UriInfo; import com.netscape.certsrv.apps.CMS; import com.netscape.certsrv.base.PKIException; -import com.netscape.certsrv.cert.CertData; -import com.netscape.certsrv.dbs.certdb.CertId; import com.netscape.certsrv.logging.IAuditor; import com.netscape.certsrv.logging.ILogger; @@ -65,7 +63,17 @@ public class PKIService { public final static int DEFAULT_SIZE = 20; @Context - private HttpHeaders headers; + protected UriInfo uriInfo; + + @Context + protected HttpHeaders headers; + + @Context + protected Request request; + + @Context + protected HttpServletRequest servletRequest; + public ILogger logger = CMS.getLogger(); public IAuditor auditor = CMS.getAuditor(); @@ -169,25 +177,6 @@ public class PKIService { return builder.build(); } - public CertData createCertificateData(org.mozilla.jss.crypto.X509Certificate cert) - throws CertificateEncodingException { - - CertData data = new CertData(); - - data.setSerialNumber(new CertId(cert.getSerialNumber())); - - Principal issuerDN = cert.getIssuerDN(); - if (issuerDN != null) data.setIssuerDN(issuerDN.toString()); - - Principal subjectDN = cert.getSubjectDN(); - if (subjectDN != null) data.setSubjectDN(subjectDN.toString()); - - String b64 = CertData.HEADER + "\n" + CMS.BtoA(cert.getEncoded()) + CertData.FOOTER; - data.setEncoded(b64); - - return data; - } - public Locale getLocale(HttpHeaders headers) { if (headers == null) return Locale.getDefault(); -- cgit