blob: 8889dc55a4193148185149a7f7be3d9914bb663d (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
|
// --- BEGIN COPYRIGHT BLOCK ---
// This program is free software; you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation; version 2 of the License.
//
// This program is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License along
// with this program; if not, write to the Free Software Foundation, Inc.,
// 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA.
//
// (C) 2014 Red Hat, Inc.
// All rights reserved.
// --- END COPYRIGHT BLOCK ---
package org.dogtagpki.server.tps.cms;
import com.netscape.certsrv.apps.CMS;
import java.security.cert.CertificateExpiredException;
import java.security.cert.CertificateNotYetValidException;
import java.util.Hashtable;
import netscape.security.x509.X509CertImpl;
import org.dogtagpki.server.connector.IRemoteRequest;
/**
* CARetrieveCertResponse is the class for the response to
* CA Remote Request: retrieveCertificate()
*
*/
public class CARetrieveCertResponse extends RemoteResponse
{
public CARetrieveCertResponse(Hashtable<String, Object> ht) {
nameValTable = ht;
}
public CARetrieveCertResponse(String connid, Hashtable<String, Object> ht) {
setConnID(connid);
nameValTable = ht;
}
public String getCertB64() {
return (String) nameValTable.get(IRemoteRequest.CA_RESPONSE_Certificate_chain_b64);
}
public X509CertImpl getCert() {
return (X509CertImpl) nameValTable.get(IRemoteRequest.CA_RESPONSE_Certificate_x509);
}
public String getRevocationReason() {
return (String) nameValTable.get(IRemoteRequest.CA_RESPONSE_Certificate_RevocationReason);
}
public boolean isCertRevoked() {
String retRevocationReason = getRevocationReason();
if (retRevocationReason != null) {
return true;
}
// revocationReason not found means cert not revoked
return false;
}
/*
* This is checking the validity; Revocation check should be done by calling isCertRevoked()
*/
public boolean isCertValid() {
X509CertImpl cert = getCert();
try {
cert.checkValidity();
return true;
} catch (CertificateExpiredException e) {
CMS.debug("CARetrieveCertResponse.isCertValid: exception thrown: " + e.toString());
return false;
} catch (CertificateNotYetValidException e) {
CMS.debug("CARetrieveCertResponse.isCertValid: exception thrown: " + e.toString());
return false;
}
}
}
|
